Security Experts Warn Congress That the Internet of Things Could Kill People

MIT Technology Review 

A growing mass of poorly secured devices on the Internet of things represents a serious risk to life and property, and the government must intervene to mitigate it. That's essentially the message that prominent computer security experts recently delivered to Congress. The huge denial-of-service attack in October that crippled the Internet infrastructure provider Dyn and knocked out much of the Web for users in the eastern United States was "benign," Bruce Schneier, a renowned security scholar and lecturer on public policy at Harvard, said during a hearing last month held by the House Energy and Commerce Committee. But he said the attack--which relied on a botnet made of hacked webcams, camcorders, baby monitors, and other devices--illustrated the "catastrophic risks" posed by the proliferation of insecure things on the Internet. For example, Schneier and other experts testified that the same poor security exists in computers making their way into hospitals, including those used to manage elevators and ventilation systems.