Besides PCs and mobile phones, Internet-connected devices like smart TVs, routers and security cameras are now also vulnerable to attacks from cyber-criminals, security software provider Symantec Sunday said.
With millions of devices now connecting to the Internet, and in many cases running embedded operating systems like Android, new device categories are becoming a magnet for cyber-criminals to hack into, Symantec Director, Technology Sales(India and SAARC), Tarun Kaura told PTI.
“The number of Internet-connected devices is growing and studies show there could be about 50 billion connected devices by 2020. The threat landscape has grown as security researchers have already demonstrated attacks against smart televisions, medical equipment and security cameras,” he added.
He added that while these newer devices may not hold information themselves, they are often a gateway to access the network and access enterprise data.
Symantec discovered a new Linux worm that is capable of attacking a range of small, Internet-enabled devices like home routers, set-top boxes, security cameras and even industrial control systems in addition to traditional computers.
Although no attack against these devices has been found in the wild, many users may not realise they are at risk, since they are unaware they own devices that run Linux.
“Many companies making these devices don’t even realise they have an oncoming security problem. These systems are not only vulnerable to an attack, they also lack notification methods for consumers and businesses,” he said.
Asked what steps users can take to protect themselves, Kaura said the basic requirement is to use the in-built password protection.
“Most people continue to use default passwords like ‘1234’ or ‘0000’, which is easy to guess,” Kaura said adding that software vendors are now working on how to notify customers and get patches for these new vulnerabilities.
According to research firm Gartner, the global security software revenue grew 7.9 percent to USD 19.2 billion in 2012 over the previous year as evolution of new threats and working practices like bring your own device (BYOD) drives spending on security.