https://community.isc2.org/t5/Tech-Talk/Smart-lighting-security-flaw-illuminates-risk-of-IoT/m-p/32551#M2290 <P>Strange this, as predicted, IoT comes to the fore again:&nbsp;</P><P>Some good questions to ask as a consumer - but many may not have the appropriate answers:</P><P>&nbsp;</P><P>Then ask the following questions:</P><UL><LI>Has this device shown any unexpected instability recently?</LI><LI>Is it possible to update the firmware?</LI><LI>Is the latest software patch installed?</LI><LI>How regularly do software patches ship?</LI><LI>Is it possible to change any default password/code on the device and has it been changed?</LI><LI>Is it possible to use an alphanumeric code?</LI><LI>Does the system support the latest edition of its operating system?</LI><LI>What is the device’s networking protocol? Is it still current?</LI><LI>Is it possible to identify the device from beyond the network using standard network monitoring tools?</LI><LI><EM>If you can’t update the device, or change its password, or it uses an ancient networking protocol, stop using it.</EM></LI><LI><EM>If the device is visible to people outside your network, either secure it, or switch it off and send it to be recycled.</EM></LI></UL><P><EM><A href="https://www.computerworld.com/article/3521228/smart-lighting-security-flaw-illuminates-risk-of-iot.html" target="_blank">https://www.computerworld.com/article/3521228/smart-lighting-security-flaw-illuminates-risk-of-iot.html</A></EM></P><P>&nbsp;</P><P><EM>So what happens if the salesman, or reseller cannot answer the above?&nbsp; </EM></P><P>&nbsp;</P><P><EM>Would you still purchase regardless?&nbsp; </EM></P><P>&nbsp;</P><P><EM>Regards</EM></P><P>&nbsp;</P><P><EM>Caute_cautim</EM></P> Sun, 09 Feb 2020 04:42:25 GMT Caute_cautim 2020-02-09T04:42:25Z https://community.isc2.org/t5/Tech-Talk/Smart-lighting-security-flaw-illuminates-risk-of-IoT/m-p/32551#M2290 <P>Strange this, as predicted, IoT comes to the fore again:&nbsp;</P><P>Some good questions to ask as a consumer - but many may not have the appropriate answers:</P><P>&nbsp;</P><P>Then ask the following questions:</P><UL><LI>Has this device shown any unexpected instability recently?</LI><LI>Is it possible to update the firmware?</LI><LI>Is the latest software patch installed?</LI><LI>How regularly do software patches ship?</LI><LI>Is it possible to change any default password/code on the device and has it been changed?</LI><LI>Is it possible to use an alphanumeric code?</LI><LI>Does the system support the latest edition of its operating system?</LI><LI>What is the device’s networking protocol? Is it still current?</LI><LI>Is it possible to identify the device from beyond the network using standard network monitoring tools?</LI><LI><EM>If you can’t update the device, or change its password, or it uses an ancient networking protocol, stop using it.</EM></LI><LI><EM>If the device is visible to people outside your network, either secure it, or switch it off and send it to be recycled.</EM></LI></UL><P><EM><A href="https://www.computerworld.com/article/3521228/smart-lighting-security-flaw-illuminates-risk-of-iot.html" target="_blank">https://www.computerworld.com/article/3521228/smart-lighting-security-flaw-illuminates-risk-of-iot.html</A></EM></P><P>&nbsp;</P><P><EM>So what happens if the salesman, or reseller cannot answer the above?&nbsp; </EM></P><P>&nbsp;</P><P><EM>Would you still purchase regardless?&nbsp; </EM></P><P>&nbsp;</P><P><EM>Regards</EM></P><P>&nbsp;</P><P><EM>Caute_cautim</EM></P> Sun, 09 Feb 2020 04:42:25 GMT https://community.isc2.org/t5/Tech-Talk/Smart-lighting-security-flaw-illuminates-risk-of-IoT/m-p/32551#M2290 Caute_cautim 2020-02-09T04:42:25Z