When it comes to device security, today’s manufacturers make a lot of claims. Most will boast that their security measures are enough to meet the needs of the moment. Some might claim that their devices are so specialized they won’t be subject to common attacks, which is rarely true; that their devices are not interesting enough for hackers to target, which is almost never true; or that perimeter security is sufficient to defend them, which is absolutely never true.
A closer examination reveals that manufacturers are still making things too easy for attackers. Many still use static credentials, weak symmetric …
