EMBEDDED

DEVICE & IOT SECURITY

Your "Smart" Device Could Be Your Organization's Largest Vulnerability

With the advent of smart homes, wearable fitness devices and just about everything from refrigerators to cars having Internet connectivity, the Internet of Things (IoT) is growing exponentially. In fact, Cisco estimates that the number of devices connected to the Internet will rise from 15 billion today to 50 billion by 2020. There's no question that this presents grave security concerns. Just one vulnerability in a "smart" product can quickly turn into a dozen or more major security issues when considering multiple IoT devices in an interconnected home or business.

It's even more alarming that embedded and IoT devices don't have the same level of scrutiny that other software does when it comes to security. It shows - a recent Hewlett-Packard Enterprise study revealed an alarmingly high number of vulnerabilities in IoT devices; these systems had very basic weaknesses including but not limited to Heartbleed, denial-of-service (DoS), and cross-site scripting (XSS) susceptibility.

Security for All of Your

Network Devices

IoT may be the latest in cutting-edge technology, but it potentially exposes systems and networks to a wide variety of malicious attacks. Vulnerable firmware codes and re-use of vulnerable software/firmware libraries can result in significant security concerns. If you've never performed a Penetration Test on these devices, you may have entry points into your network that you never anticipated. Our team of hackers can test all of your embedded systems, such as routers, firewalls, gateway controllers, remote access devices, and other internet-connected devices.

Our Process

RevBits provides various types of testing and analysis for IoT devices based on your needs and capabilities. For organizations looking for a general system-level vulnerability test, RevBits performs a "black box" test, considering the inputs and outputs of each device and their susceptibility to exploitation. For a more detailed review, RevBits offers source code analysis to fully understand the device in question. Our skilled team analyzes cryptography, hardcoded keys, firmware signatures, vulnerable libraries, code vulnerabilities, OS command injection and possible backdoors.

If you develop or deploy IoT devices and want to test your device and firmware code security, we can help. We also assist organizations implementing IoT systems for the first time, or anyone replacing a router. We always recommend testing new hardware before deployment to ensure that you are protected.

Our Team

Our team at RevBits includes hardware and embedded device specialists who enjoy the challenge of dismantling hardware in search of vulnerabilities. They've even been known to develop fully-functional remote root exploits. Our experts are on retainer with some of the largest cyber security companies in their field; those companies come to us because of our superior skill and experience that comes with handling thousands of security incidents per year. From dissecting hardware to assessing vulnerable firmware, our team can do it all.

Stay in touch