Last Update: January 30, 2018
October 2017 Wi-Fi KRACK attack Warning
KRACK attack on Wi-Fi. Attackers can use this novel attack technique to read information that was previously assumed to be safely encrypted. Virtually ALL Wi-Fi equipped devices need to be updated. The attack is particularly bad on Android 6.0 and Linux. If you have a device with no updates (eg Internet of Things), you will be open to attacks.
Securing Internet of Things, Smart Home Devices
More and more gadgets for the home are connected to the Internet for additional functionality. Refrigerators to Thermostats to Door Locks, the list is never ending. Do not forget about security. You may have created an open door for hackers, become part of an evil Botnet, or illegal activity without your knoawledge.
A vulnerable webcam can give ANYONE on the Internet a view of your home. Secure these home gadgets as strongly as possible. Many can NEVER be updated, which means that you should discontinue their usage.
Wi-Fi Network Connection
Here are some general tips to secure your new IOT or smart home devices:
- Change the default password or credentials of the Device
- Update the device to the latest firmware available. If the company does not have a firmware update page on their website, we would return it. Do this again every couple months.
- Connect your IOT device such as a Dropcam or Nest Smoke Detector to your Guest Wi-Fi network whenever possible. This network should be walled off from the normal network, preventing access to all your Computers. Malicious devices could snoop on your network and quietly send information without your knowledge.
- If the Wireless routers guest network is not secure, it is even better to have 3 routers in a Y configuration. You can purchase an inexpensive router that hooks up to your Cable/DSL modem, then have 2 separate wireless routers connected to this device. Put all Internet of Things devices on one of the Y routers. Connect your computers, smartphones, tablets to the other router.
- Have the Guest network that IOT devices are on, use a different dns server
- Turn off uPNP on your router to prevent ports from being opened up to access IOT devices.
- Never poke a hole through your firewall for a device. It could then be accessed by anyone on the Internet! Use Shields Up! to look for open ports.
- Peer to Peer capabilities are hard to secure. Avoid devices with this.
- Cheaper IOT devices especially no name ones sold on Amazon or eBay should be avoided. Most of these are rarely built with security in mind and are never updated. Stick to brand name, IE Netgear, Google, Ring, etc..