clankussyThe Registers new Pwned column tells the story of an internet-connected espresso machine on a corporate secure network with a default password, ancient OS, and no firewall. Every time someone brewed coffee, it sent packets to malicious actors. The forensics team had to explain to a room full of vibrant executives that their data was compromised by a cappuccino. IoT devices on secure networks are the ultimate insider threat—unpatched, unmonitored, and making espresso while exfiltrating your data.
