Drudge Retort: The Other Side of the News
Monday, April 16, 2018

Nicole Eagan, the CEO of cybersecurity company Darktrace, told the WSJ CEO Council in London on Thursday: "There's a lot of internet of things devices, everything from thermostats, refrigeration systems, HVAC [air conditioning] systems, to people who bring in their Alexa devices into the offices. There's just a lot of IoT. It expands the attack surface and most of this isn't covered by traditional defenses." Eagan gave one memorable anecdote about a case Darktrace worked on where an unnamed casino was hacked via a thermometer in a lobby aquarium. "The attackers used that to get a foothold in the network. They then found the high-roller database and then pulled that back across the network, out the thermostat, and up to the cloud," she said.





Admin's note: Participants in this discussion must follow the site's moderation policy. Profanity will be filtered. Abusive conduct is not allowed.

Not gonna fall for the "thermometer in the fish tank" trick.

-Eddie Murphy

#1 | Posted by sentinel at 2018-04-16 12:08 PM | Reply

Someone slipped up in a big way on that one and it is honestly dumbfounding because casinos do and SHOULD have really tight network security. I wonder when this happened and I would love to know more of the details.

This is just a reminder to me of why I hate IoT devices. It's a nightmare at work working with the business and vendors who want their devices connected to the internet. Most of them rely on TeamViewer (which has been repeatedly hacked), don't use good security practices (default passwords, simple passwords, same UN/PW for EVERY customer, etc.) and in general are just clueless.

We have million dollar each coating chambers that the vendor and the manager insisted was going to be online all the time until we produced reports of how often the version of their software has been hacked, noted how out of date the version they were using was, found out they use the same UN/PW (simple PW) for all clients, noted how out of date the OS on the device was and in general shredded their arguments for having it on the internet 24/7 for "convenience". We manually connect as needed now - it's not that big of a PIA.

#2 | Posted by GalaxiePete at 2018-04-16 12:22 PM | Reply

@#2 ... Someone slipped up in a big way on that one ...

Yup. The network for the thermometer should be no where near the network for the casino's infrastructure.

#3 | Posted by LampLighter at 2018-04-16 12:25 PM | Reply

#3 | Posted by LampLighter

Completely agree. Physically separated even.

#4 | Posted by GalaxiePete at 2018-04-16 12:38 PM | Reply

even your refrigerator can rat on you. it's not right...

#5 | Posted by AuntieSocial at 2018-04-16 02:42 PM | Reply

#5 | Posted by AuntieSocial

LoL - not mine.

#6 | Posted by GalaxiePete at 2018-04-16 03:37 PM | Reply

Speaking of ratting you out - What's getting even more scary is how much data Microsoft is collecting on Windows 10 users. Makes me want to get off Windows again.

#7 | Posted by GalaxiePete at 2018-04-16 03:38 PM | Reply

Wow, great article and exploit of the network

#8 | Posted by GOnoles92 at 2018-04-16 05:18 PM | Reply

even your refrigerator can rat on you. it's not right...
.................................#5 | POSTED BY AUNTIESOCIAL

wait'll it turns out that michael coen represents the thermometer

#9 | Posted by ABlock at 2018-04-16 07:36 PM | Reply

"Wow, great article and exploit of the network

You ass. "Great article"? There was barely anything more than what is summarized above. You owe me almost a minute of my life back.

#10 | Posted by mOntecOre at 2018-04-17 04:38 PM | Reply

Comments are closed for this entry.

Home | Breaking News | Comments | User Blogs | Stats | Back Page | RSS Feed | RSS Spec | DMCA Compliance | Privacy | Copyright 2018 World Readable

Drudge Retort