Are smartphones threatening the security of our IoT devices?

7 years ago

ESET revealed the key risks of using smartphones. Recent years have seen an upsurge in internet-connected medical devices and fitness trackers, many of which feed data to or can be controlled via apps on our phones. This means that such devices now contain valuable data about our health and wellbeing that are vulnerable to cyberattacks. IoT objects increasingly rely on smart devices with sensors built in and applications to support them. The problem with this is that the infrastructure to shore up and support the security of the data being funnelled through our phones simply does not exist yet. It isn’t just medical data that can be exploited, either.

ESET sees increase in use of phones to access online banking, to buy goods through consumer websites and to access public services. The data up for grabs is a goldmine for both identity thieves and fraudsters. A surge in connected cars, smart traffic management as well as development in appliances we’re familiar with, such as fare payments for public transport, will form part of that IoT revolution. The downside of smart mobility is that the use of GPS is integral to its functionality – and GPS is seen as an easy target by cybercriminals.

Many gamers, for instance, use it to cheat at the popular augmented reality game Pokemon Go.

Exactly what a cybercriminal could do with data that reveals the location of your car or the last tube journey you took is a chilling thought – as is knowing where you are not.

Manufacturing processes can now be networked to provide greater efficiency as well as real-time diagnostics and rapid response. However, smartphones could pose a vulnerability. Company gateways that connect IoT devices to networks are made as secure as the devices themselves. However, the rise of bring your own device to work policies could leave a gaping hole if these networks are accessed via smartphones that don’t have the same security credentials.