Leading IoT Security Provider Releases Important Vulnerability Details
MOUNTAIN VIEW, Calif. – October 17, 2018– Zingbox, the provider of the most widely deployed healthcare Internet of Things (IoT) analytics platform, today announced research detailing the vulnerabilities in telepresence robots that can be leveraged by hackers to access sensitive data such as chat conversations, images and live video streams.
Following the initial findings showcased at the RSA conference in April 2018, Zingbox security researchers continued to work with the manufacturers. These efforts resulted in five Common Vulnerabilities and Exposures (CVEs) outlining various vulnerabilities, ranging from unprotected credentials to unauthorized remote access. Zingbox is now releasing the details of the vulnerabilities after the manufacturers had an opportunity to address the issues.
“While much of the burden of ensuring device security falls on the healthcare providers, the collaboration between device manufacturers and security vendors is a critical component to assist healthcare providers,” said Daniel Regalado, principal security researcher at Zingbox and co-author of Gray Hat Hacking. “I commend the quick actions by the device manufacturers, which enable us to share additional details regarding this vulnerability and educate the industry on the latest cyber threats.”
The research provides details on how a telepresence robot can initially be targeted by intercepting firmware updates or gaining access via remote hacking. In addition to the theft of sensitive data, the report also details how a hacker can gain access to video recordings.
For more details, the full report is available here.
Zingbox is the provider of the most widely deployed healthcare Internet of Things (IoT) analytics platform.Recently named a Cool Vendor in IoT Security by Gartner and recipient of the Stevie Award for Most Innovative Company, Zingbox helps hospitals realize the full potential of their IoT medical devices, delivering a new standard for uninterrupted quality care through device inventory, management, security, and optimization for the entire IoT environment. The company’s device-specific AI-powered machine learning platform uses the first real-time deep behavioral learning technology for connected medical devices. For more information, please visit http://www.zingbox.com.