Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
I have an itch to secure my home some more. So how would you better secure a house full of IoT devices?
Message
<blockquote data-quote="Victor M" data-source="post: 1052074" data-attributes="member: 96560"><p>Throw in a cheap box and run pfSense at the entrance to that IoT lan. pfSense is a linux firewall does firewall rules, supports DMZ, and it has intrusion prevention (IPS). That should filter out some attacks to your IoT devices.</p><p></p><p>Make the IoT WiFi password long, like a passphrase. The length part will filter out some WiFi bruteforce attacks.</p><p></p><p>But there are exploits for some China made devices, and router + modem residential attacks are on the rise. Security teams aren't raising alarms because they serve to protect corporations but there was a security news article mentioning that. For example, there's an exploit for my Bell modem+router, and there is a permanent attacker box sitting in my lan, nmap sees it, and I can't get rid of it no matter how many times I change the password. Lord only knows what he's doing. So I turn on my VPN even at home.</p><p></p><p>I hope you are not only focusing on network security, because there is only so much network security can do, like throwing in an NGAV, enable network segmentation. Endpoints are the real end game. After all, attackers aim to get control of your machine. And your server, if you have one. Strong endpoint security is a must.</p><p></p><p>If you trust Microsoft, their MS Defender for Biz is an EDR (endpoint detection & response) It has a nice cloud console, and you can see your security score, current attack trends (with remediation) and current incidences. And they show a pretty diagram of attacks in progress. And it is cheaper than most AV suites. If you load MS Security Baseline for Windows 22H2, it will give you a device score of 100% secure, which is why I don't trust it that much - the score gives a false sense of security. It only works on Windows Pro.</p><p></p><p>In the end, true security seems to require man power for monitoring. Which is why I choose an EDR - I have a browser tab open to the console at all times.</p></blockquote><p></p>
[QUOTE="Victor M, post: 1052074, member: 96560"] Throw in a cheap box and run pfSense at the entrance to that IoT lan. pfSense is a linux firewall does firewall rules, supports DMZ, and it has intrusion prevention (IPS). That should filter out some attacks to your IoT devices. Make the IoT WiFi password long, like a passphrase. The length part will filter out some WiFi bruteforce attacks. But there are exploits for some China made devices, and router + modem residential attacks are on the rise. Security teams aren't raising alarms because they serve to protect corporations but there was a security news article mentioning that. For example, there's an exploit for my Bell modem+router, and there is a permanent attacker box sitting in my lan, nmap sees it, and I can't get rid of it no matter how many times I change the password. Lord only knows what he's doing. So I turn on my VPN even at home. I hope you are not only focusing on network security, because there is only so much network security can do, like throwing in an NGAV, enable network segmentation. Endpoints are the real end game. After all, attackers aim to get control of your machine. And your server, if you have one. Strong endpoint security is a must. If you trust Microsoft, their MS Defender for Biz is an EDR (endpoint detection & response) It has a nice cloud console, and you can see your security score, current attack trends (with remediation) and current incidences. And they show a pretty diagram of attacks in progress. And it is cheaper than most AV suites. If you load MS Security Baseline for Windows 22H2, it will give you a device score of 100% secure, which is why I don't trust it that much - the score gives a false sense of security. It only works on Windows Pro. In the end, true security seems to require man power for monitoring. Which is why I choose an EDR - I have a browser tab open to the console at all times. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
