Written by: Veikko Ylimartimo, Tosibox founder
Over the last weeks we have read from a number of sources how different automation devices, other internet connected devices and -systems have been subject to hacking and denial of service attacks. As an example, the hijacked devices have been used for instance in conducting distributed denial of service attacks.
IoT devices that have been connected to the internet with public IP address, port forwarding or DynDNS -type additional services are often easy target for cyber criminals. Even unexperienced hackers can establish unauthorized connections to these devices for disturbance and vandalism.
One way to categorize the cyber attacts is to group them in three main categories, all of them concerning closely the automation devices as well as other internet connected devices and -systems:
1. By hacking inside the system and changing the settings or gathering information.
2. By focusing an distributed denial of service attack against the devices within the system. The typical results of this kind of attack are the connections to and within the devices becoming disturbed or completely lost.
3. By using the devices within the system as an accessory to conduct a massive distributed denial of service attack against a third party. The typical results of this kind of attack for example to the automation systems and -devices of the industry and real estate are rapid and continuous reboots. This typically results in software crashes and disabled functionality.
One of the last attacks in Finland during last week was conducted according to category 3. Most probably the concerned automation systems were used to conduct a distributed denial of service attack against a third party located in Europe.
All systems and devices with the remote access secured by TOSIBOX® technology have been protected also from the latest cyber attacks and distributed denial of service attacks.
Also Tekniikka & Talous magazine wrote an article on the Cyber attacks to building automation systems in Lappeenranta. In addition, the article states that there has not been any troubles with attacks since the TOSIBOX® solution was taken into use.