IoT Crypto Key Reuse Soars 40%

Practice makes it easier for attackers to launch Man in the Middle attacks.

By Phil Muncaster

The number of internet-connected smart devices using non-unique private keys for HTTPS server certificates has risen by a staggering 40% over the past nine months, according to SEC Consult.

The Vienna-based security consultancy recently revisited its November 2015 study on hard-coded crypto secrets in embedded systems only to find the number of devices still sharing known private keys had risen from 3.2 million to 4.5m.

To read the entire article, please click here.