Security News > 2024 > July > 99% of IoT exploitation attempts rely on previously known CVEs

99% of IoT exploitation attempts rely on previously known CVEs
2024-07-05 04:30

The explosion of Internet of Things devices has brought about a wide range of security and privacy challenges, according to Bitdefender and NETGEAR. The report is based on global telemetry of 3.8 million homes and 50 million IoT devices that generated 9.1 billion security events over the course of 12 months.

Vulnerabilities in IoT frameworks, like those found in the ThroughTek Kalay platform, expose millions of users to potential privacy breaches.

To combat the risks associated with IoT security, the US government has introduced the Cyber Trust Mark - a certification that helps consumers identify IoT devices that meet strict security standards, including strong credentials, regular updates, and data protection.

Devices from manufacturers that prioritize security in their design, development, and patching processes may exhibit lower vulnerability counts compared to those from manufacturers that are less focused on security.

Mitigating memory corruption vulnerabilities requires thorough code review, input validation, and memory protection mechanisms to prevent exploitation.

99% of IoT exploitation attempts rely on previously known CVEs.


News URL

https://www.helpnetsecurity.com/2024/07/05/iot-security-privacy-challenges/