Blog
Dive deep into MikroTik's RouterBoards and RouterOS. We keep you informed and up-to-date, always.
Blog
Dive deep into MikroTik's RouterBoards and RouterOS. We keep you informed and up-to-date, always.
Author
Every post is penned by our certified MikroTik engineers, ensuring relevance and accuracy in every word.
Feedback
Your insights drive our content. Sharing knowledge, we elevate the MikroTik community in Canada together.
In today’s connected world, smart devices have become a part of everyday life. From smart bulbs to thermostats, these devices offer convenience and control from anywhere. However, what many don’t realize is the hidden risk these devices can pose to the security of your network.
Recently, we discovered an alarming issue after deploying a FortiGate device to secure our network. The issue arose with a smart lighting device purchased from a reputable retailer. The light controller, was sending data not only to a U.S.-based server (which is expected for functionality) but also to multiple servers located in China. This behavior raised serious questions about what type of data is being sent and for what purpose.
Here’s what we found:
• Constant Data Transfer to China: Upon reviewing network traffic, we noticed that the light controller sent traffic to China every few seconds. Even after blocking access to these servers through our firewall, the device continued trying to communicate with various Chinese servers.
• Functionality Without Chinese Servers: Interestingly, when we blocked the traffic to China and allowed communication only with U.S.-based servers, the smart lighting device continued to work perfectly fine. This included remote control of the lights, dimming, and turning them on or off—all features functioned normally despite the blocked access to China.
This raises an important question: Why is this device trying to send traffic to Chinese servers, when it’s fully functional using only the U.S. server?
As a consumer, this presents a concerning scenario. Devices that you purchase from trusted retailers may be sending data abroad without your knowledge. While the device remains fully functional, you have to wonder what type of data might be transmitted. Is it your personal information? Network details? Something more?
The Risks and Concerns
• Latency and Performance: Transmitting data to servers in faraway locations like China introduces unnecessary latency and performance issues. There are plenty of servers located in Canada or the U.S. that could manage and control these devices without introducing such risks.
• Security Risks: The attempt of these devices to “poke” through firewalls, even when blocked, suggests persistent and potentially unauthorized attempts to connect to foreign servers.
What You Can Do to Protect Your Network
a. Monitor Network Traffic: Using advanced security measures like a FortiGate firewall can help you identify and control where your IoT devices are sending data.
b. Block Unnecessary Connections: If your devices work fine without sending traffic abroad, consider blocking these connections for better security.
c. Be Aware: Even devices from trusted sources may not be transparent about where they send data.
We’re not here to blame any specific brand or retailer, but this incident highlights a growing concern about IoT device security. Why should a light controller in Canada need to send data to servers in China when there are more reliable, secure, and geographically closer options available?
If you have experienced similar issues or have concerns about the security of your smart devices, feel free to contact us at Wireless Netware Technology for more information and support. Our team can help you secure your home or business network and provide insights on safeguarding against these hidden risks.
MikroTik News