Pen Test Partners’ Ken Munro Sees IoT Problems Mounting
Few internet-connected devices are built to be secure by default, and the problem is getting worse, says Ken Munro of Pen Test Partners. Internet-connected devices are sharing more types of personal data, often via cloud services that have vulnerabilities that make them easy to remotely exploit, he says.
Munro most recently found this internet of things problem with a set of “smart” speakers designed to go inside a ski or snowboarding helmet that he tested, which leaked a user’s GPS coordinates, audio via its walkie-talkie function with other users, as well as username and password.
In a video interview with Information Security Media Group at RSA Conference 2019 in San Francisco, Munro discusses:
- Challenges in corporate and consumer IoT devices;
- Where IoT problems pop up in businesses, including smart locks and building management systems;
- Why IoT security is getting worse, and what must be done to fix it.
Munro is a founder and partner at Pen Test Partners with more than 15 years of penetration testing and information security experience. He regularly speaks at industry events, such as the Infosecurity Europe and RSA conferences.