The Krebs on Security site was hit by a DDoS attack powered entirely by internet of things devices. The attack should serve as a ‘wake up call’ that IoT has a serious security problem, says Stephen A. Ridley. Hardware manufacturers are not thinking about vulnerabilities in hardware as a way to make it easy for an attacker to get at the software, Ridley said. There are baseline steps that can be taken to provide better security around building devices, he said. A small piece of code with a vulnerability that is reused throughout product line can turn one vulnerability into an exploitation across thousands of devices.”]
Source: https://www.csoonline.com/article/3123695/ddos-takedown-powered-by-iot-devices.html