Internet of things big security worry, says HP

HP found 25 vulnerabilities per device including everything from TVs to thermostats to home alarms and scales.
Written by Larry Dignan, Contributor

About 70 percent of Internet of things devices---including sensors and connected infrastructure---have vulnerabilities that could be exploited, according to Hewlett-Packard.

HP's data is based on it Fortify division and a scan of 10 of the most popular Internet of things devices. HP found 25 vulnerabilities per device. These devices included TVs, Webcams, thermostats, remote power outlets, sprinklers, door  locks, home alarms, scales and garage openers.

The findings, assessed based on the OWASP Internet of Things Top 10 list and vulnerability categories, account for the devices as well as cloud and mobile applications connected to them.

Among the key bullets:

  • 80 percent of devices including cloud and mobile apps failed to require strong passwords.
  • Eight of 10 devices collected enough data to raise privacy concerns.
  • 70 percent of devices didn't encrypt communications and 60 percent of them lacked encryption for software updates.
  • Six of 10 devices had insecure Web interfaces.


Editorial standards