Jeremiah Fowler is a cybersecurity researcher whose job is to look for exposed data and notify companies that may have a data breach.
Fowler was recently a guest on the Security Breach podcast, hosted by Jeff Reinke, to discuss vital cybersecurity topics relevant to the U.S. industrial sector.
In this snippet pulled from the episode, Fowler details a recent IoT intrusion he uncovered, including a database containing 3 billion records. He traced the vulnerability to a Chinese agricultural light manufacturer. The company's biggest target market is the cannabis industry.
Fowler tied the breach to an IoT device that connects to a user's wi-fi so the operator can control the lights remotely. The IoT device captured the wi-fi name and password, IP addresses and security keys, everything a hacker would need to attack the network maliciously.
Fowler says this example should be a "wake-up call." He says IoT devices are extremely dangerous because they aren't made to have ongoing security updates and can create a "giant gaping hole" in your network.
We reached out to Fowler to learn the manufacturer's name; this post will be updated once we hear back.
Watch the full episode here.
Subscribe to the Security Breach podcast here.
