Hackers stole a casino's high-roller database through a thermometer in the lobby fish tank
- Darktrace CEO: Hackers are increasingly targeting unprotected 'internet of things' devices such as air condition systems and CCTV to get into corporate networks.
- In one incident, a casino was hacked through the thermometer in its lobby aquarium.
- Former GCHQ director calls for laws on minimum security standards for 'internet of things' devices.
LONDON - Hackers are increasingly targeting 'internet of things' devices to access corporate systems - everything from CCTV cameras to air-conditioning units.
Eagan gave one memorable anecdote about a case Darktrace worked on where an unnamed casino was hacked via a thermometer in a lobby aquarium."The attackers used that to get a foothold in the network. They then found the high-roller database and then pulled that back across the network, out the thermostat, and up to the cloud," she said.
Robert Hannigan, who ran the British government's digital spying agency GCHQ from 2014 to 2017, appeared alongside Eagan on the panel and agreed that hackers targeting internet of things devices is a growing problem for companies."With the internet of things producing thousands of new devices shoved onto the internet over the next few years, that's going to be an increasing problem," Hannigan said. "I saw a bank that had been hacked through its CCTV cameras because these devices are bought purely on cost."He said regulation to mandate safety standards would likely be needed.
"It's probably one area where there'll likely need to be regulation for minimum security standards because the market isn't going to correct itself," he said. "The problem is these devices still work. The fish tank or the CCTV camera still work."