Devices are always getting smarter – whether it’s your phone, your TV, or even your toaster. And the Internet of Things (IoT) exists to connect them all together, making them more convenient to use and maximising their efficiency. 

By the end of 2023, there were reportedly over 16 billion IoT-connected gadgets across the world – with that figure expected to reach 41.1 billion by the end of the decade. But as we celebrate the revolutionary potential that the Internet of Things has for productivity and globalisation, how often do we stop to think about security?

From dodgy Wi-Fi routers being compromised to expertly coordinated distributed denial-of-service (DDoS) attacks carried out by malicious hackers, it’s clear that leaks can still get through even the most watertight of cyber security systems. So what makes the IoT so vulnerable, and what can be done to improve it? Let’s dive in.

The Mirai botnet and “zombie armies”

Nearly 10 years ago, the world learned about the now infamous Mirai malware when its authors launched a large-scale DDoS attack that crippled some of the internet’s biggest names. The malware infected a global network of smart devices, including home security cameras and baby monitors, to create a botnet. Sometimes known as a “zombie army”, this can be used to target organisations. In this case, the attack brought down Dyn, a domain registration services provider.

Malware attacks like these are increasing with the number of IoT-connected devices. A study in November 2024 revealed that attacks had surged by 400%, with many of the same players like Mirai and Gafgyt responsible for a majority.

Risky business: Why IoT attacks are so malicious

While the Internet of Things offers fertile ground for DDoS botnets targeting organisations, the risks don’t end there. In fact, the IoT presents a perfect opportunity for hackers looking to exploit weaknesses in home-based systems in order to steal personal data.

The interconnected nature of the IoT means that if a particular device is compromised, it could grant access to other systems. For example, certain models of smart fridge that connect to Google have been highlighted as vulnerable to man-in-the-middle attacks, where an attacker who gains access to the network could steal the user’s Google account login details.

Perhaps the most serious aspect of IoT security is where it impacts physical safety. When smart devices can be used to control baby monitors, turn ovens on, and even unlock cars, it’s probably a good idea to make sure those apps are secure – otherwise, real lives could be at risk.

What makes the Internet of Things a prime target?

Cyber security attacks are on the rise – from taking global giants like M&S offline for six weeks to hackers targeting your smart fridge. 

But part of what makes these personal devices – lightbulbs, thermostats, cars – so easy to hack is that they don’t have cyber security innately factored into their design. For instance, the idea that a mobile app should reset when a car changes hands might sound like a no-brainer, but someone still needs to sit down and actually implement it.

IoT security issues arise partly due to a lack of common standards. With devices running a huge variety of software, it can be difficult to implement security measures across the board. It also doesn’t help when devices run obsolete versions of open-source software with widely known security issues.

One of the most trivial vulnerabilities in IoT devices is passwords. The weakness of default passwords is what makes malware like Mirai so relentlessly effective. If a user buys a home security camera and connects it to the internet, should it really be a surprise that having the password set to “123456” or “password” leaves it open to misuse? The problem is that many users probably don’t even realise there is a password, let alone how to change it.

Keep your network secure with Fasthosts

This is where communication and awareness come in. It’s vital for companies to let consumers know how to keep their devices safe. Fortunately, as we move to an increasingly globalised and hyper-connected world, security features and protocols are becoming much more common in such devices.

Of course, high security standards for smart devices will always require good security in general. A secure network with standard features like firewalls, VPNs, antivirus, and antimalware goes a long way towards ensuring IoT devices are kept secure. 

At Fasthosts, we’ll never leave you or your business open to hackers. Whether we’re hosting your website on a dedicated server or supporting you from the cloud, you’ll find a complete range of security features on our platform. What’s more, it’s all topped off with expert, UK-based support from our 24/7 customer service team. Get in touch to discuss your needs today.