A threat actor uses network scanning tools and penetration tools to discover the IP address and manufacturer of a home wireless router. The threat actor then uses internet searches to discover the default administrative access details. Successful remote access of the home router allows the threat actor to use it as a vector to attack other devices. Which element of smart home security is affected by this attack?
Explanation: In general, the security requirements for a Smart Home should include these:
- WPA2 – The wireless network should use the latest Wi-Fi security which is currently WPA2.
- Encryption – It protects the confidentiality and integrity of information transmitted over a network.
- Authentication – Strong authentication protects the device from unauthorized use or reconfiguration and prevents disclosure or modification of the data stored on the device.
- Firmware – The IoT device manufacturers should update the firmware for any newly discovered vulnerabilities. The home IoT device users should enable the checking of updates automatically.