The IoT spin cycle: Security challenges which continue to plague device manufacturers

In March this year, a curious issue was discovered on the Miele Professional PG 8528, a professional medical washer, that caught the attention of news outlets: “The corresponding embedded webserver "PST10 WebServer" typically listens to port 80 and is prone to a directory traversal attack;” the security flaw statement revealed, “therefore, an unauthenticated attacker may be able to exploit this issue to access sensitive information to aid in subsequent attacks. A Proof of...

By Adam Cecchetti, 20 October 2017, 0 comments. Categories: Devices, IoT, Security, Testing.