A critical vulnerability has been disclosed in hardware random number generators used in billions of Internet of Things (IoT) devices. The problem is unique to the IoT landscape as they lack an operating system that typically comes with a randomness API (e.g., /dev/random” in Unix-like OSes or BCryptGenRandom in Windows), with the researchers highlighting the benefits of a larger entropy pool associated with a CSPRNG subsystem, thus removing “any single points of failure among the entropy sources”
Source: https://thehackernews.com/2021/08/a-critical-random-number-generator-flaw.html