Stories
Slash Boxes
Comments

SoylentNews is people

Hackers Exploit Smart Thermometer to Steal Casino Information

posted by mrpg on Monday April 16 2018, @07:57PM   Printer-friendly
from the 1/38 dept.

MrPlow writes:

Submitted via IRC for SoyCow3941

[....] Nicole Eagan, CEO of cybersecurity company Darktrace, revealed Thursday that a casino fell victim to hackers thanks to a smart thermometer it was using to monitor the water of an aquarium they had installed in the lobby, Business Insider reported. The hackers managed to find and steal information from the casino's high-roller database through the thermometer.

"The attackers used that to get a foothold in the network," Eagan said at a Wall Street Journal panel. "They then found the high-roller database and then pulled that back across the network, out the thermostat, and up to the cloud."

That database may have included information about some of the unnamed casino's biggest spenders along with other private details, and hackers got a hold of it thanks to the internet of things.

Source: Hackers exploit casino's smart thermometer to steal database info

Original Submission

 
This discussion has been archived. No new comments can be posted.
Hackers Exploit Smart Thermometer to Steal Casino Information | Log In/Create an Account | Top | 33 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 2) by HiThere on Monday April 16 2018, @09:30PM (2 children)

    by HiThere (866) Subscriber Badge on Monday April 16 2018, @09:30PM (#667806) Journal

    Well, it *is* relevant. It might not be the only thing that needs to be patched, but it should also be looked at.

    --
    Javascript is what you use to allow unknown third parties to run software you have no idea about on your computer.
    Starting Score:    1  point
    Karma-Bonus Modifier   +1  
    Total Score:   2  

  • (Score: 1) by hopdevil on Monday April 16 2018, @10:08PM (1 child)

    by hopdevil (3356) on Monday April 16 2018, @10:08PM (#667824)

    If anything it is a red herring.. worrying about patching IoT devices when the rest of your infrastructure security is poo. If there even were patches for the devices -- assuming it is even beyond a static username/password -- it could just as easily been a laptop plugged in.
    It must be cool and newsworthy these days to blame a random device on your network for a security breach because it is "IoT"?

    • (Score: 2) by black6host on Monday April 16 2018, @10:20PM

      by black6host (3827) on Monday April 16 2018, @10:20PM (#667826) Journal

      With respect to the whole mess, IOTs, existing network systems, etc: Security needs to taken more seriously. Much more seriously. Or, we need to keep sensitive info off of networks but I don't see that happening, kind of defeats the purpose of all these damn computer systems :) It's just like anything else, if the risk of ignoring security, and subsequent results if you do so, don't outweigh benefits of a more secure system (think potential profit vs risk) then we'll just stagnate here for a bit. When the pain of staying is greater than the pain of changing then we'll see something happen.