Plug And Play? No, Plug And Pray!
A big boo and hiss to the standards makers and manufacturers of Universal Plug and Play (UPnP) devices, including IP camera, network routers and other devices that easily connect together for the convenience of both the consumer and hackers.
The United States Computer Emergency Readiness Team (US-CERT) this week warned that about 20 million UPnP-enabled devices from more than 1,500 vendors have protocol vulnerabilities and configuration errors that allow attacks on target systems behind the firewall. That translates to more than 16 million tiny exploitable network holes created by companies as large as Cisco, Huawei and Sony.