IT@Intel Blog

Previous Next
Click to view Matthew Rosenquist's profile
3

Crazy as it may sound, digital appliances and accessories can infect your computers with viruses and worms. It is happening more and more. Although not near a tipping point, an evil cloud is rising.


Unlikely Threats
It is concerning enough we have to worry about USB drives, WiFi hotspots, mobile phones, PDA's, printers, email attachments, file downloads, search engines, and surfing just about any website. But now we must keep a suspicious eye on our new net-enabled refrigerator, digital picture frames, music playing sunglasses, and even the toaster.

Recent articles shows how consumer devices integrated with network enabled computers are sources for malware infections. It is not shocking software CD/DVD's, or USB Drives might have nasty code lurking. Suspicion is the norm anytime we are connecting or installing something directly to our trusty computer. In those situations, we take proper precautions. But what about media players, GPS devices, and most recently wireless digital picture frames? These devices may not directly connect via traditional cable. Does the average consumer realize when they flip the power button they may be turning on a wireless device infected with malware seeking to infect anything within range?

The toaster is out to get you!
It is not just the geek toys anymore. Not to long ago, an enterprising individual took it upon himself to hack a regular toaster, just to prove it could be a source of malware. A toaster! Very impressive, but what is next?

As computers are integrated into everything and are being upgraded with more power and connectivity, the threat landscape grows. Our cars, major appliances, personal electronics, accessories, and even clothing are potentially at risk. We are dragging these items into the digital world and in doing so, overlaying cyber risks on them.

Although not widespread, more and more stories are emerging and the list of products grows longer. At some point we will be forced to re-evaluate the standard threat categories to include some non-traditional vectors. Personally, I am waiting for shoe manufacturers to implant computers in their products so we can have "walk-by attacks". Can't wait.


Some news reference links:
http://www.securityfocus.com/news/11499
http://www.pcworld.com/article/id,141295-pg,1/article.html
http://www.theregister.co.uk/2008/01/14/sans_threat_list/

Tags: security, information_security, optimal_security, model, risk, matthew_rosenquist, rosenquist, threat, vulnerability
Average User Rating
(0 ratings)


Add a comment Leave a comment on this blog post.
Jan 17, 2008 5:15 PM Reply Guest Victor

Evil? I think "sick" would be better describe infected consumer devices.

An example of a truly Evil consumer device is a DVD player that disrespects its human owner by refusing to fast forward through the previews.

Mar 17, 2008 12:45 PM Reply Click to view Matthew Rosenquist's profile Matthew Rosenquist in response to: Victor

This problem is not going away anytime soon. A recent article states "Many of today’s new technologies have unwanted extras from the factory: pre-installed viruses that steal passwords, open doors for hackers, and make computers spew spam. Recent cases reviewed by the Associated Press include some of the most widely used tech devices: Apple iPods, digital picture frames sold by Target and Best Buy stores, and TomTom navigation gear."

Check it out at: http://www.cnn.com/2008/TECH/ptech/03/13/factory.installed.virus.ap/index.html

Jun 19, 2008 10:26 AM Reply Click to view Matthew Rosenquist's profile Matthew Rosenquist in response to: Matthew Rosenquist

Although I have seen numerous articles of vulnerable products since this post, this one was just too good to pass up:

http://news.cnet.com/8301-10784_3-9970757-7.html

“An Australian man has discovered security vulnerabilities in his
Internet-connected coffee maker that could allow a remote attacker to
not only take over his Windows XP-based PC but also make his coffee too
weak.”