Paul Ducklin, principal research scientist at IT security company Sophos, offers some tips for keeping IoT devices and other connected computers secure at home – especially if you are working from home as well.
Ducklin says there are seven questions you should ask yourself about devices on your home network and about the setup of your network in general. Think of it as going through your very own Cybersecurity Awareness Month at home.
1. Do I actually need this device online? If not, consider removing it from your network. Or if you don't need it listening in or activated all the time, consider powering it down when you aren't using it. (Simply unplugging it from the wall socket is often all you need to do.)
2. Do I know how to update it? If not, find out how; if the vendor can't reassure you about security updates, consider switching products to a vendor that does (and see step 1).
3. Do I know how to configure it? Make sure you know what security settings are available, what they are for, and how to set them up (and see step 2).
4. Have I changed any risky default settings? Many IoT devices come with remote troubleshooting features turned on, which crooks may be able to abuse, and default passwords, which the crooks will definitely know. Check and change defaults before you make the device live (and see step 3).
5. How much am I sharing? If the device is hooked up to an online service, familiarise yourself with how much data the device is sharing, and how often. You may be happy to share some data, but never feel squeezed into turning all the options ‘to the max’ (and see steps 3 and 4).
6. Can I ‘divide and conquer’ my network? Some home routers let you split your Wi-Fi into two networks that can be managed separately. This is useful if you are working from home because it means you can put your home IoT devices on a ‘guest’ network and your work devices, such as a laptop, on another.
7. Do I know who to turn to if there's a problem? If your work has an IT department or offers access to tech support, make sure you know where to report anything suspicious. Ask them what information they are likely to need and provide it at the outset in order to speed up the process.
“By the way,” adds Ducklin, “if you're an IT department looking after remote workers, make it easy for your less-technical colleagues to reach out for cybersecurity advice, or to report suspicious activity, and take the attitude that there's no such thing as a stupid question.”
From the editor’s desk: The continued relevance of Moore’s Law in the IoT age 26 May 2021, Technews Publishing
, News, Editor's Choice
The end of Moore’s Law (which famously posits that the number of transistors in a dense IC doubles about every two years, assuming an optimal price/performance ratio) has repeatedly been predicted, yet ...
Read more...From the editor's desk: Should I stay or should I go? 26 February 2021, Technews Publishing
, News
Observant readers will have noted that, for most of the latter half of last year, we stopped publishing our regular events column. There just didn’t seem much point when industry events were being cancelled ...
Read more...From the editor's desk: We must now gather nuts, not hibernate EMP 2021 Electronics Manufacturing & Production Handbook, Technews Publishing
, News
Throughout recorded history and across many cultures, winter has often been associated with misery, sorrow and death. And rightly so. Ever since biblical times, pestilence and plague have taken their ...
Read more...Protecting you and your home with IoT 25 November 2020
, Smart Home Automation
IoT technology gives people the power to keep a watchful eye on what is important to them, whether they are 200 metres or 200 kilometres away.
Read more...From the editor's desk: Where monsters, viruses and technology meet 25 November 2020, Technews Publishing
, News
I clearly remember the moment it really sank in that the world as we know it has become almost unrecognisable from a year ago. It would be hard not to remember really, because it happened only two days ...
Read more...Adapt your home to your lifestyle 25 November 2020
The Came Domotic3.0 home automation system allows people to manage all the automated devices in their home according to their lifestyle needs.
printer friendly version