30 Aug Cyber Attackers Can Use IoT Metadata to Snoop on User Activity
Princeton University researchers have found that attackers with ISP capabilities can learn a lot about a user’s lifestyle and habits by studying the metadata generated by their IoT devices.
According to their research, attackers can intercept and make use of the metadata that gets leaked by the traffic exchanged by IoT devices and their remote servers, even if the user is using a VPN. This traffic can be identified via DNS requests that are unique to each device.
In an experiment, the researchers were able to establish if the user was home by looking at the activity spikes of the devices.
Source: Bleeping Computer