Researchers Warn of Flaw Affecting Millions of IoT Devices

2020-08-19 20:58

Researchers are urging connected-device manufacturers to ensure they have applied patches addressing a flaw in a module used by millions of Internet-of-Things devices.

"Some of these will be the vulnerable module, and an attacker will then have an assortment of phone numbers and associated code retrieved from the device at that number. By inserting backdoors into the code and writing them back, the attacker would be in control of various IoT devices around the world."

Due to the sheer breadth of connected devices that are powered by this module - from medical devices to connected utilities - researchers warn that the potential impact of the flaw could be dire if not patched.

The flaw could be used in medical devices that leverage the module to manipulate readings from monitoring devices, to cover up concerning vital signs or create false panic.

More than half of all IoT devices are vulnerable to medium- or high-severity attacks, meaning that enterprises are sitting on a "Ticking IoT time bomb," researchers warned earlier this year.

News URL

https://threatpost.com/flaw-affecting-millions-iot-devices/158472/

#IOT #researcher