IoT Pentesting

Code Review

Many times the vulnerabilities related to the code development for applications and firmware of embedded devices get exposed only after the deployment. Our tech experts work with the development teams of the customer during development stage itself to help develop the code which is secure prior to the deployment on the network.

Compliance Audits

A security compliance audit is comprehensive third party review of the organization for its readiness & adherence to cyber security processes and best practices. Compliance audits provide organizations an opportunity to continuously improve its risk management capability. Some of the compliances are regulatory in nature and are mandatory as per laws and regulations of specific country while some provides strong foundation for cyber risk assessment & security management. Valency Networks has been providing implementation consultancy and audit services for major information security compliances such as ISO 27001, ISO 27017/18, HIPAA, GDPR, SOC 2, PCI DSS, ITAR and FDA CFR Part 11 & 820.

Many IoT devices use symmetric encryption, in which a single key gets used to encrypt and decrypt data. The fact that the data gets encrypted offers a secure layer of security, particularly compared to using hardcoded or default passwords, but sharing and storing the encryption key creates risk.

The Most Important Security Problems with IoT Devices

• Incorrect access control
• Overly large attack surface
• Outdated software
• Lack of encryption
• Application vulnerabilities
• Lack of Trusted Execution Environment
• Vendor security posture
• Insufficient privacy protection
• Intrusion ignorance
• Insufficient physical security
• User interaction

Attack surface refers to the exposed areas or vulnerabilities in the IoT device that can be exploited by a malicious hacker to gain unauthorized access.

Any vulnerable web interface, mobile, cloud interface, or API may be a component of insecure ecosystem interfaces. The list of issues under this category is as follows-

• Authentication issue while accessing sensitive data
• Server certificates not validated by device
• Security updates not installed
• Leaking API keys

Intrusion Detection is the process of finding out an external influence trying to gain illegal access to the software. As its name implies, any form of unlawful access is discovered and reported for necessary action to be taken against the intrusion. It’s like the technology that detects burglary and sounds the alarm. During penetration testing, the company will automatically determine whether the intrusion detection technology in its software is functioning correctly.

Attacks are defined by the layer of the IoT infrastructure targeted but can be generalized into the following categories as IoT infrastructure isn’t standardized.

• Physical – tend to target the sensor layer and require close proximity to the device.
• Network – usually the most common, can be used to extract large amounts of data remotely.
• Encrypted – devices don’t always feature encryption which makes them vulnerable to this type of attack.
• Software – the biggest risk as the potential to access the entire software system is high. Attackers might use phishing, malware, viruses, and scripts among others.

The attack surfaces could be-

• Devices- Devices can be the primary means by which attacks are initiated. Parts of a device where vulnerabilities can come from are its memory, firmware, physical interface, web interface, and network services. Attackers can also take advantage of insecure default settings, outdated components, and unsecure update mechanisms, among others.
• Communication channels- Protocols used in IoT systems can have security issues that can affect the entire system. IoT systems are also susceptible to known network attacks such as denial of service (DoS) and spoofing.
• Applications and software- Vulnerabilities in web applications and related software for IoT devices can lead to compromised systems.