PA’s Aleksander Gorkowienko, an IT security and penetration testing expert, is quoted in an article in Mobile Europe about the rise of ethical hacking.
The article discusses whether ethical hacking by telecoms firms is the answer to testing and securing internet of things devices.
Aleksander explains that the internet of things is a complex area which requires specialist security protocols and products. Devices are being rushed out quickly as demand increases, so security isn’t included in the design.
Cyber crime tipping point survey
The article goes on to explain that there are a number of consumer devices such as connected cars that could have the potential to be attacked in various ways. Aleksander says that upgrading firmware on this type of consumer device is also complex: “If there’s a problem with Microsoft Word on your computer, you can download an upgrade. If it’s a car on the road or a ‘smart’ device in your house, how can you get an upgrade? It requires an intervention.”
In the case of internet of things, upgrading firmware “is a serious thing, as it’s not automated,” says Aleksander. He goes on to say: “Quite often embedded devices are created by engineers but they don’t have the emphasis on security.”