PASSWORDS VITAL FOR SMART TVs
Internet-connected devices easy target for hackers
THESE days, it’s possible to use your phone, and sometimes your voice, to control everything from your TV to your lights, thermostat and shades, even your car or medical device (once you have gadgets that can listen).
But the WikiLeaks allegation that CIA commandeered some Samsung smart TVs as listening devices is a reminder that inviting the “Internet of Things” into your home comes with some risk.
Connected devices are unquestionably popular.
Research firm Gartner expects there to be 8.4 billion connected “things” in use this year, up 31 per cent from last year.
By 2020, this number could reach 20.4 billion, with smart TVs and digital set-top boxes serving as the most popular consumer gadgets.
For businesses, smart electric meters and commercial security cameras are expected to be the most popular “Internet of things” products. Such gadgets are convenient, but present easy targets for hackers.
In October, hackers seized control of webcams and digital video recorders and recruited them into Internet “botnets” that launched denial-of-service attacks against popular websites, such as Netflix and Twitter, forcing them offline for some users.
There’s a growing call for regulation to secure connected devices, but it’s unclear whether this will happen.
Last year, the Department of Homeland Security released a report describing runaway security problems with devices that recently gained Internet capabilities, a collection that included medical implants, surveillance cameras, home appliances and baby monitors.
“The growing dependency on network-connected technologies is outpacing the means to secure them,” Department of Homeland Security Secretary Jeh Johnson said at the time. This was during the Obama administration; more regulation appears unlikely under President Donald Trump.
Forrester Research analyst Josh Zelonis said consumers couldn’t wait for the government to fix things. Instead, he said, people have to demand that manufacturers were accountable for the security of their products and that they supported the products throughout the product’s lifetime, not just when it’s sold.
Which, of course, is far easier said than done.
One problem: many people don’t realise they have to secure connected devices with passwords like a computer.
“People don’t think of a television or a camera as a computer and that’s all it is,” said Gartner analyst Avivah Litan.
If a device comes with a default password, it needs changing the moment you hook it up. Similarly, your Wi-Fi password shouldn’t still be the one it came out of the box; it needs a hard-to-guess passphrase to ensure that it can’t be easily hacked.
Another problem: cheaper devices from no-name companies also pose more of a security risk. While big companies like Apple, Amazon or Samsung can patch up security holes as soon as they find them, smaller companies don’t have the resources — or, sometimes, the ability or willingness — to do so.
“Bigger companies typically have more resources and more to lose, so they are typically more secure,” said Patrick Moorhead, analyst at Moor Insights & Strategy.
Password-protecting most connected devices, though, should go a long way towards ensuring they won’t be used to take down Netflix.
“Don’t buy from smaller vendors. Don’t buy devices that don’t encrypt data everywhere. And change the password if you can.”
Sydnee Thompson, a 24-yearold from Troy, Michigan, is cautious, but ultimately sanguine about her connected devices.
She has an internet-connected television, but she’s been reluctant to get a “smart” device like Amazon’s Echo home assistant because of worries that it would always be listening, and that others might also.
But Thompson has a smartphone and assumes that if the government wants to track her, it can.
“If the government wants to find out something about you, it will. It’s just the world we live in.”
Cameron Matz from Stafford, Virginia, said he planned to keep using smart televisions.
“We can’t be afraid to live our life because someone out in the world is listening in on your conversation about daily activities.”