An internet-connected fish tank let hackers into a casino’s network 

A high-tech, internet-connected fish tank in a North American casino has been used to exfiltrate data from the company’s network. Smart drawing pads used in an architectural firm were part of a botnet used to mount DDoS attacks against websites around the world owned by entertainment companies, design companies, and government bodies.These are just some of the discoveries made by UK-based cyber defense Darktrace, but serve as perfect examples of how lax security when it comes to IOT devices can spell disaster for businesses.Unexpected doors into the corporate networkIn the case of the smart fish tank, the casino had configured the tank to use an individual VPN to isolate the tank’s communications from the commercial network, but the attacker managed to use this foothold into the company network to scan for vulnerabilities in other systems and exploit them.Ultimately, he or she managed to transfer 10GB of company data outside the network, to a server in Finland. The data was uploaded to the server via the compromised fish tank.

Source: An internet-connected fish tank let hackers into a casino’s network – Help Net Security

Advertisements
Categories: Uncategorized

Post navigation

Comments are closed.

Blog at WordPress.com.

%d bloggers like this: