Priya PatelTLDR:
Approximately three million smart toothbrushes were allegedly hijacked by hackers to launch a Distributed Denial of Service (DDoS) attack, but security company Fortinet has since admitted that mistakes were made and the story was not real. The incident highlights the expanding threat landscape as the Internet of Things (IoT) becomes more embedded in daily life. IoT devices are inherently insecure due to neglect and the lack of interfaces to add security measures. Users are advised to update all devices automatically, avoid public USB ports, be wary of public Wi-Fi connections, set up a firewall on their Internet connection, and avoid purchasing unnecessary IoT-enabled devices.
Despite the initial report of three million smart toothbrushes being hijacked for a DDoS attack, security company Fortinet has retracted the claim, admitting that mistakes were made. The story had claimed that the compromised toothbrushes were running Java and were used to flood a Swiss website with bogus traffic, causing widespread disruption. However, sources found it hard to believe this story, and Fortinet has clarified that it was only mentioned as an illustration of a hypothetical attack, rather than a real event.
The incident raises awareness about the expanding threat landscape as more IoT devices are introduced into our daily lives. Many devices that were once considered harmless and disconnected from the digital ecosystem are now potential entry points for cybercriminals. Stefan Zuger, director of system engineering at Fortinet’s Swiss office, highlights that every device connected to the internet is a potential target and can be misused for an attack.
The issue of IoT device security has been known for years, with many devices being inherently insecure due to neglect and the lack of interfaces to add security measures. Users are advised to update their devices automatically whenever an update is available, avoid charging devices at public USB ports, be cautious about using public Wi-Fi connections, set up a firewall on their Internet connection at home, and avoid purchasing unnecessary IoT-enabled devices. Additional measures to improve digital hygiene and protect against potential attacks are also recommended.
