Smart cities will help both the private and public sector excel in many areas, but as helpful they are, they also come with many security risks. PERRY HUTTON, Regional Vice President – Africa at Fortinet, outlines five security areas CIOs need to watch out for.
Car navigation systems that can predict where and when traffic jams might occur, by siphoning data from sensors in roads and other vehicles. Cameras that can spot litter in public places and call in the cleaning crew. Self-adjusting street lamps.
These are just a few of the scenarios that could become commonplace as smart cities take hold over the next few years. Driven by rising urbanisation and fuelled by technologies such as the Internet of Things (IoT) and data analytics, smart cities are on the cusp of explosive growth. Glasgow, Barcelona, Nice, New York City, London and Singapore have already embarked on the trek. The smart city technology market could be worth US$27.5 billion annually by 2023, according to Navigant Research.
Smart city initiatives are driven by public sector initiatives. However, they will have a big impact on businesses. CIOs will have to learn how to tap on the new connected city infrastructure for their business. Smart city technologies like IoT and data analytics are expected to drive innovative business ideas in the future.
But the new wave of smart city services and technologies are also expected to create new security vulnerabilities. Here are five areas CIOs should watch out for.
1. A further fragmentation of IT
The last few years saw a rapid proliferation of cloud services and mobile device adoption in the workplace. The trend has transformed business productivity. But it has also wrecked the tight-fisted control that CIOs used to be able to exert on their IT systems.
CIOs now have to grapple with the idea of employees using unsanctioned cloud services via unsecured phones to hook up to corporate servers and accessing sensitive business data. The expected explosion of IoT devices − researchers estimate that by 2020, the number of active wireless connected devices will exceed 40 billion worldwide − will result in a further fragmentation of IT in businesses.
Instead of fighting the losing battle of trying to lock down devices and services, CIOs should look at protecting the data. Look for IoT devices that offer device-to-device encryption. Consider implementing − as well as bolstering − comprehensive encryption schemes to protect data in networks, cloud services and endpoint devices.
2. Device vulnerabilities
In the past year, security researchers have exposed holes in Wi-Fi-enabled Barbie dolls, Jeep Cherokee cars, fitness trackers and other new-fangled connected devices. Fortinet’s FortiGuard Labs already see IoT based attacks on the radar and happening in real time around the world. This shows the risks that are coming as toys, wearables, cars and power grids get attached to sensors that are linked to a common network and the Web.
IoT will bring forth a larger surface attack. Hackers will eye IoT devices as a launching pad for ‘land-and-expand’ attacks. One scenario: hackers take advantage of vulnerabilities in connected consumer devices to get a foothold within the corporate networks and hardware to which they connect.
So how do CIOs protect against the risks of connected devices and their own IoT implementations? Short of physically separating such devices from all other network systems, they can consider deploying network-based protection schemes. Internal segmentation firewalls, or ISFWs, for instance, can mitigate the proliferation of threats inside the business network. They also need to employ an IoT network security solution which is capable of mitigating exploits against this growing and vulnerable attack surface. IoT vendors need to harden their products and develop proper product security (PSIRT) teams.
3. IoT gateways can be exploited
In a typical IoT deployment, the majority of connected devices will be always connected and always on. Unlike mobile phones and laptops, such devices are likely to go through only a one-time authentication process across multiple sessions. This will make them attractive to hackers looking to infiltrate into company networks, as it allows easy control and sniffing of traffic. Shoring up the security of the gateways that connect IoT devices is therefore a must. CIOs should map out where these gateways are and where they are linked to − they can reside internally or externally, and even be connected to IoT device manufacturers. There must also be a sound plan for updating security patches on these gateways, as well as the IoT devices.
4. Big data, more risks
If there is a constant in smart city deployments, it is that more data will be generated, processed and stored. Connected devices will generate huge data repositories. Businesses that adopt big data systems will see an even larger data deluge. Unfortunately, such data will also become attractive targets for corporate hackers. To protect huge amounts of data with large inflows and outflows, the bandwidth capabilities of security appliances will come to the fore. And when dealing with data analytics, it often isn’t just a single data set, but multiple repositories of data that may be combined and analyzed together by different groups of people. For instance, a pharmaceutical company’s research efforts may be open to employees, contractors and interns. This means individual access and auditing rights.
5. A new can of worms
New worms designed to attach to IoT devices will emerge − and they could wreak more havoc given the extended reach of the new converged networks. Conficker is an example of a worm that spread on PC’s in 2008 and is still persistent and prevalent in 2016. Likewise, worms and viruses that can propagate from device to device can be expected to emerge – particularly with mobile and the Android operating system. Embedded worms will spread by leveraging and exploiting vulnerabilities in the growing IoT and mobile attack surface. The largest botnet FortiGuard labs has witnessed is in the range of 15 million PC’s. Thanks to the internet of things, this can easily reach in excess of 50 million if the spread of IoT worms is not properly mitigated. Patch management, and network based security inspection – particularly intrusion prevention systems or IPS – that can block IoT worms is a must.
As selfie cameras rise, so must selfie etiquette
Selfies were once a sign of narcissism or self-obsession. Now they are the new normal, writes ARTHUR GOLDSTUCK.
You can blame Oxford Dictionaries for making the “selfie” respectable. After all, being named Word of the Year, as it was in 2013, does tend to soften some of the self-consciousness in this most self-conscious of actions.
Once seen as a symbol of narcissism and self-obsession, it is now the new normal, to the extent that most smartphones are sold on the basis of the front camera. Or, as that feature is now almost universally named by manufacturers, the “selfie camera”.
I was one of the hold-outs, having a near-allergy to the selfie. I still resist, but succumb more often than I would like. The reason for continued resistance is that it remains a big leap from the word becoming respectable to the action itself shedding its narcissistic image.
For most, it’s already happened, and for that you can blame Ellen DeGeneres. She choreographed the most famous group selfie yet at the 2014 Oscars, when she roped a bunch of actors into a group selfie, using the then-new Samsung Galaxy S5 smartphone. Her tweet of the photo became what was then the most retweeted posting ever on Twitter, and was estimated to have been worth a million dollars in marketing value to Samsung.
Ironically, it was Samsung’s up-and-coming challenger, Huawei, that came up with a new word for this type of selfie: the “groufie”. Thanks to an 8 Megapixel front camera on the new Huawei Ascend P7 camera that year which took the highest quality selfies – and groufies – possible on a smartphone at the time.
It didn’t end there, and selfies and groufies have morphed into variations like selfscapes (selfie in a landscape), skyfies (selfies from the air, using remote controlled devices) and jerkies (selfies to make an idiot out of yourself). I invented all of those on the fly, so it’s easy to imagine a new word emerging for every type of selfie.
Continue reading about selfie improvements through the years.
Mickey’s 90th for SA
Disney Africa announced the local launch of the Mickey the True Original campaign, joining the global festivities honouring 9 decades of Mickey Mouse, his heritage, personality and status as a pop-culture icon.
As 18 November 2018 marks 90 years since his first appearance in Steamboat Willie in November 1928, a series of world-wide celebrations will be taking place this year and South Africa is no different.
The campaign will come to life with engaging content and events that embrace Mickey’s impact on the past, present and future. The local festivities kick off in earnest this month, leading up to Mickey’s 90th anniversary on 18 November 2018 and beyond:
- An exclusive local design project where ten highly talented South African artists will apply their own inspiration and artistic interpretation on 6-foot Mickey Mouse statues.
- Once revealed to the public, the statues will form part of the Mickey the True Original South African Exhibition, inspired by Mickey’s status as a ‘true original’ and his global impact on popular culture. The exhibition will travel to 3 cities and delight fans and families alike as they journey with Mickey over the years. Featuring 4 sections highlighting Mickey’s innovation, his evolution, influence on fashion and also pop culture, the exhibition is in collaboration with Samsung and Edgars, and will visit:
o Sandton City, Centre Court: 28 September – 14 October
o Gateway Theatre of Shopping, Expo Explore Court: 19 October – 11 November
o Canal Walk Shopping Centre. Centre Court: 16 November – 26 November
- Samsung continues their collaboration with Disney as they honour Mickey’s 90th anniversary nationally at all Samsung and Edgars Stores. Entitled Unlocking the Imagination, fans are encouraged to visit these stores, take a selfie with a giant Mickey plush toy using their Samsung Galaxy Note9 and stand a chance to win not only a giant Mickey plush, but also an international family trip. Visit www.Samsung.com for more information
- Mickey’s 90th Spectacular, a two-hour prime-time special, will be screened on M-Net 101 later this year. The elegant affair will feature star-studded musical performances, moving tributes and never-before-seen short films. Superstars from music, film and television will join the birthday fun for the internationally beloved character.
- In addition, look out for special programming on Mickey’s birthday (18 November) across Disney Channel (DStv, Channel 303), Disney XD (DStv, Channel 304) and Disney Junior (DStv, Channel 309).
- In retailers, Edgars will be stocking a complete collection of trendy fashion, accessories and footwear for the whole family, inspired entirely by Mickey Mouse.
- Mickey will be the central theme of an in-store campaign nationwide this November and December, with brand new products, apparel, toys, as well as titles from Disney Publishing Worldwide, including books, arts & crafts and comics
- Discovery Vitality and Disney are celebrating healthy, happy families this festive season by offering helpful and exciting tips and tricks on how to eat nutritious, yet delicious, foods, all inspired by Mickey. There’s also a trip to Disneyland Paris up for grabs. Log on to www.discovery.co.za/vitality for information.
- And much more – check the press for updates
“Binding generations together more than any other animated character, Mickey Mouse is the “True Original” who reminds people of all ages of the benefits of laughter, optimism and hope,” says Christine Service, Senior Vice President and Country Manager of The Walt Disney Company Africa. “With his universal appeal and ability to emotionally connect with generations all over the world, no other character quite occupies a similar space in the hearts and minds of a global fan base and we are thrilled to be sharing these local festivities.”
Mickey’s birthday is celebrated in honour of the release of his first theatrical film, Steamboat Willie, on 18th November 1928, at the Colony Theatre in New York City. Since then, he has starred in more than 100 cartoons and can currently be seen on Disney Channel (DStv, Channel 303) in the Mickey Mouse cartoon series and on Disney Junior (DStv, Channel 309) in Mickey and the Roadster Racers.
South African fans are encouraged to share their Mickey Mouse moments on social media using the hashtag#Mickey90Africa.