Devil’s Ivy and IoT Risk: Visit CLOUDSEC 2017 For Answers
Tracy Lanning
Senior Strategic Alliances &Partner Marketing Manager at Trend Micro Europe
The Internet of Things (IoT) is permeating organisations faster than many IT leaders would like, but few can argue with the benefits it brings. Unfortunately, as the latest major security alert, Devil’s Ivy, has reminded us, the IoT can also expose mission critical enterprise data and systems to unpalatable levels of cybersecurity risk.
With potentially tens of millions of IoT products affected by the newly discovered bug, CISOs need to redefine and expand their understanding of the rapidly evolving threat landscape. A great place to start is at Trend Micro’s upcoming CLOUDSEC 2017 event in London this September.
The Internet of Flawed Things
Devil’s Ivy is a stack buffer overflow vulnerability first discovered in 249 models of connected security camera. It could allow a hacker to spy on a target or – even worse – block access while a robbery is carried out. However, the issue doesn’t end there. The bug was found in gSOAP, a popular open source third-party toolkit, meaning it could be present in tens of millions of IoT software and hardware products, as yet unpatched.
It’s certainly not the first major IoT scare and it won’t be the last. We only need to go back a few months to remember the havoc caused by the Mirai botnet, which exploited devices protected only by default log-ins. The OWASP Top 10 shows us many more areas of possible IoT risk.
CLOUDSEC 2017
It’s no surprise that over a third (35%) of organisations have already implemented an IoT security strategy and nearly half (46%) are investing in related security this year, according to PwC. But knowing where to start can be tough.
That’s where CLOUDSEC 2017 comes in. Back by popular demand, this one-day security conference will provide the perfect opportunity for IT leaders to network with peers and learn from industry experts. Trend Micro VP of Research, Rik Ferguson, will explain how to raise the bar on IoT security in an afternoon session, but there’ll be many more on everything from data protection to emerging threats and industry collaboration.
Tickets are selling fast, so book your spot today to avoid disappointment.
What: CLOUDSEC 2017
When: Tuesday 5 September 2017
Where: Park Plaza Westminster Bridge, London