Just about everything you can imagine is going to be Internet-capable soon, from your toaster to your car to the equipment your hospital uses.
And you know what's amazing? Nobody, and I do mean nobody, takes security seriously. You think Flash is bad on security? How about a car that lets the radio tune in to the Internet--and allows an attacker on the Internet who knows the radio's IP address to control the car's brakes? How about drug pumps that listen on FTP ports and allow remote commands with nary even a password? Or maybe tea kettles that can be loaded with malware?
First, the
hospital drug pump. My girlfriend was attached to one of these when she went in for surgery two years ago. It's network enabled, can be accessed directly from anywhere in the hospital's network, and has no security at all.
And the car?
A design flaw in new Jeeps means if you know the vehicle's entertainment system IP address, you can remotely take over the car's engine and brake controls through the Uconnect network. I have no idea why someone thought it would be a good idea to connect the computer that runs the engine and brakes directly to the computer that runs the entertainment system. It must've seemed reasonable at the time.
I love the idea of the Internet of Things. I weep for humanity's inability to learn from security mistakes of the past.
