Hi, Shrewd!        Login  
Shrewd'm.com 
A merry & shrewd investing community
Best Of Macro | Best Of | Favourites & Replies | All Boards | Post of the Week! | How To Invest
Search Macro
Shrewd'm.com Merry shrewd investors
Best Of Macro | Best Of | Favourites & Replies | All Boards | Post of the Week! | How To Invest
Search Macro


Personal Finance / Macroeconomic Trends & Risks
Unthreaded | Threaded | Whole Thread (4) |
Post New
Author: WendyBG   😊 😞
Number: of 4163 
Subject: Is your home device a channel for cyberattacks?
Date: 06/15/26 4:55 PM
Post Reply | Report Post | Recommend It!
No. of Recommendations: 1

Do you have a “smart home” equipped with digital devices?

https://www.wsj.com/tech/cybersecurity/how-million...


How Millions of Digital Home Devices Are Secretly Powering Cyberattacks
Watch WSJ’s Jack Gillum investigate how questionable foreign companies turn cheap gadgets into tools for some of the most damaging cyberattacks on record

By Jack Gillum, Emma Scott, Noah Higgins-Dunn and Robert McMillan, The Wall Street Journal, June 15, 2026

Millions of everyday consumer devices, especially knockoffs that you buy online, are being infected by a malware known as residential proxy software.

This gives anyone—including hackers—a backdoor into home networks. The Digital Citizens Alliance estimates that there are 20 million of these backdoors in the U.S… Smart doorbells, security cameras, theromstats, picture frames, tablets, cell phones, smart refrigerators…

Criminals are tapping in to them to carry out cyberattacks and other types of illegal activity around the world.

Think one of your gadgets has been infected? Here’s how to check.…

https://www.wsj.com/tech/cybersecurity/how-to-find...
How to Find Out Whether Your Computer Is Part of a Botnet—and What to Do About It
Watch WSJ’s Robert McMillan show off the tools needed to protect your tech from malicious software

By Robert McMillan, April 4, 2026

Residential Proxy Software can be used by hackers …

Spur is a company that keeps track of Residential Proxy Networks …Spur.us/me
… If you are running a VPN, turn that off first.
… Take a look at what’s on your network…
[end quote]

https://www.wsj.com/tech/cybersecurity/how-to-find...

Since these are videos I can’t paste snips so I posted free links.

When Comcast brings a suspected infected device into their lab to investigate it they put it into a Faraday box (like putting a diseased person into quarantine) because the devices could have WiFi and bluetooth and they want to protect their own systems.

They have seen DDOS (Distributed Denial of Service) attacks where 2 million computers try to reach a target web site at the same time, crashing the web site. They say there are a minimum of 10 million infected devices but nobody knows and the number could be much higher.

The bad guys pay the manufacturers a kickback to allow them to put malware on the devices.

This probably won’t happen on a house brand. For example, I have an Amazon Fire tablet which is probably trustworthy. However, infected third-party devices were ordered over Amazon and Walmart.

I’m not on a WiFi network. All my devices are hard-wired with cables. Our WiFi network is encrypted but I’m sure that’s true of everyone. My understanding is that the infected devices are brought into and connected to the networks.

Jeff, help me out with this one. Other than looking on my network, is there another way to find out if a device is infected?

Wendy (I prefer dumb refrigerators)

Print the post


Author: jerryab   😊 😞
Number: of 4163 
Subject: Re: Is your home device a channel for cyberattacks?
Date: 06/15/26 7:55 PM
Post Reply | Report Post | Recommend It!
No. of Recommendations: 0
Tried spur.us/me

Showed router properly and apparently my system is pretty clean (nothing reported by them).

I used MS Edge browser.

I also have Google Chrome browser but haven't check it yet. I presume it is also ok.
Print the post


Author: OrmontUS   😊 😞
Number: of 4163 
Subject: Re: Is your home device a channel for cyberattacks?
Date: 06/16/26 9:56 AM
Post Reply | Report Post | Recommend It!
No. of Recommendations: 2
Wendy: Other than looking on my network, is there another way to find out if a device is infected?

I've tried, without too much success, to parse that question into something answerable.

There are at least three ways a consumer's network gets compromised:

1) Backdoors and flaws are introduced into the design of the product at the factory. This is not limited to the Chinese building these issues into the consumer routers they manufacture for all the major US vendors, but if you read the Snowden WikiLeaks dumps, also built into US manufactured products sold abroad.

2) Companies make their money by the snazzy features they design into their hardware and software. Constant vigilance and continuing to bolster security costs money. Since when their devices are hacked they have little financial exposure, they simply use whatever version of security infrastructure was current at the time the device was manufactured and frequently there were vulnerabilities found later on by nefarious parties.

3) By the negligent and/or ignorant behavior of the owners/administrators of the network who through carelessness or social engineering let their networks be compromised.

The best I can suggest is to be vigilant. Keep up to date on what's going on (Reading cryptogram's monthly newsletter - https://www.schneier.com/crypto-gram/ - is a good beginning). Unless you are being targeted by a government agency, etc., assuming you have a long, reasonably complex key, your wifi is unlikely to provide an entry point as it's short-range and there are not a whole lot of close neighbors in your neck of the woods (in my case, I live surrounded by all sorts of former Soviet Republics type of people, so there is more opportunity for concern).

Thee path to your network is funneled through your modem and router. Normally, your modem is brain-dead and in any case outside your router. That leaves you one gateway to keep an eye on. Make sure your router is running the latest available firmware and get into the habit of re-booting it once a month (long story).

And don't fret too much.

Jeff
Print the post


Author: mungofitch SILVER
SHREWD
  😊 😞

Number: of 4163 
Subject: Re: Is your home device a channel for cyberattacks?
Date: 06/16/26 11:49 AM
Post Reply | Report Post | Recommend It!
No. of Recommendations: 15
Other than looking on my network, is there another way to find out if a device is infected?
...
The best I can suggest is to be vigilant.


As a baseline, I assume that everything asking for a Wifi connection was made by a firm with no software security department at all. Just assume that every device you give your Wifi password to has been rooted, knows everything on your computer, and is sending the most valuable bits somewhere bad. Frankly that's a bigger concern for me than whether it's part of a DDOS botnet, or whether your TV manufacturer is selling your watching habits to someone (it almost certainly is).

So my humble suggestion:
One very simple step in the right direction is just never to give your Wifi password to any device you don't *absolutely* need to have connectivity. If the thing can't get on your net, at least you're safe from vulnerabilities in that one box. I would never give my password to my fridge or doorbell or washing machine or TV or printer. Some things have to have it to provide functionality I choose not to live without, but in our house that's only Apple devices--at least Apple probably has a pretty good security budget. We're vulnerable, but less vulnerable that we might be.

Other things like my pool monitor or my alarm system, which need to have internet access to be monitored by people elsewhere, are on dedicated subnets isolated from my house net. (you can buy small boxes pre-configured with complete port isolation, so each thing plugged into it can get to the internet, but not to anything else within the house--no need for router table expertise). I don't use the Wifi in the router from my ISP, I turn that off and buy my own wireless access point. I like Ruckus.

I enjoyed the book "If it's Smart, it's Vulnerable." By a leading security expert, but it isn't a cheery read. The title kind of says it all.

Jim
(no smart phone)
Print the post


Post New
Unthreaded | Threaded | Whole Thread (4) |


Announcements
Macroeconomic Trends & Risks FAQ
Contact Shrewd'm
Contact the developer of these message boards.

Best Of Macro | Best Of | Favourites & Replies | All Boards | Followed Shrewds