Back to Glossary
Emerging Threats
What is Internet of Things Security?
The security challenges posed by billions of internet-connected devices that often have minimal security, no update mechanism, and extensive data collection capabilities.
IoT devices are among the least secure and most invasive technologies in common use.
The Problem
- Most IoT devices have minimal security (default passwords, no encryption)
- Many have no mechanism for security updates
- Devices often phone home to manufacturer servers constantly
- End-of-life devices stop receiving updates but continue operating
- Average smart home has 20+ connected devices
Notable Incidents
- Mirai botnet (2016): Compromised IoT devices took down major internet services
- Ring doorbell: Employees caught accessing customer video feeds
- Smart TV spying: Samsung TVs caught recording conversations
- Baby monitors: Numerous incidents of unauthorized access
Protection
- Network segmentation: Put IoT devices on a separate network
- Change default passwords: Immediately on setup
- Disable unnecessary features: Microphones, cameras, cloud connectivity
- Prefer local-only devices: Devices that work without cloud
- Check for update support: Avoid devices with no update mechanism
- Consider necessity: Do you really need a smart toaster?
Related Terms
App Permissions
Controls that determine what data and device features an app can access, including contacts, camera, microphone, location, and storage.
Network Segmentation
Dividing a network into separate zones to contain breaches and limit lateral movement by attackers.
Smart Home Surveillance
The privacy risks created by internet-connected home devices that collect audio, video, and behavioral data, often shared with manufacturers and third parties.
Have more questions?
Use our guided flow to get the right next privacy step for Internet of Things Security.
Open Guided Flow