Infosecurity Magazine reported a troubling but not exactly surprising finding: makes of embedded devices such as routers and modems and IP cameras are reusing the same cryptographic keys in the firmware. It’s not surprising because many of these embedded devices use shared code; as a security professional said recently at a conference I attended, software for most of the “things” in the Internet of Things (IoT) is not written – it’s assembled from existing components.
Obviously this reuse of the same keys is a security issue. Just how serious it is depends on who you’re talking to. You can read more about it here:
http://www.infosecurity-magazine.com/news/embedded-device-risk-industrywide/
