Cybercriminals are shifting their attention from traditional computers to Internet-connected devices in Canadian homes, says the government's cybersecurity agency.
In its threat assessment for 2018, the Canadian Centre for Cyber Security says devices connected to the internet — such as a growing number of "televisions, home appliances, thermostats and cars" — have become popular targets.
"Manufacturers have rushed to connect more types of devices to the internet, often prioritising ease of use over security," the centre wrote in its report.
"We regularly observe cybercriminals exploiting security flaws in devices resulting in either disruption to device functionality or using devices as platforms to launch other malicious cyber activities."
Cybercriminals used thousands of devices connected to the internet — from baby monitors to air quality monitors and surveillance cameras — to launch a botnet attack in October 2016.
"The botnet conducted a powerful Distributed Denial of Service (attack) that disrupted a major website domain manager, temporarily disabling some of the world's most popular e-commerce, entertainment and social media sites for millions of users."
BA, Marriott Face Massive Fines For Data Loss
If proof was needed that poor data protection is bad for the corporate wallet, two examples have demonstrated that substantial fines face those organisations that have lax data security.read more
Cumbria First Police Force To Utilise NMC Tools
Cumbria Constabulary has become the first police force to use the National Management Centre (NMC) for cybersecurity set up under the National Police Chiefs’ Council (NPCC).read more
Phishing Attacks Bypassing 2-Factor Authentication
Penetration testers and attackers have a new tool in their arsenal that can be used to automate phishing attacks in a way that defeats two-factor authentication (2FA) and is not easy to detect and block, reports CSO Magazine.read more
Third of Breaches Caused By Unpatched Vulnerabilities
IT security professionals have admitted that a third of cybersecurity breaches are the result of vulnerabilities that they should have patched.read more