memo
PROVEN STERLING
PrudencMemoTemplateANSWER.docxVulnerability Memo Page 4 of 4
Memo
| To: |
Recipient Name
|
| From: |
Your Name
|
| Date: |
Date
|
| Re: |
Potential vulnerabilities
|
Introduction
Many organizations have adopted the use of technology in their operation in order to enhance their performance.Most of these technologies come along with some security issues where the organization’s sensitive information is exposed. However, there are several measures that can be put into action so as to minimize and prevent security breaches. The two related devices that this memo will address include IoT printer and IoT tagging device
Device 1: IoT Printer
· IoT printers are used in organizations to facilitate and manage printingprograms. These printers are equipped with technology which enablethe organization to manage them from a remote place. These printers use different printer and copier brands and a combination of monitoring tools (Dae et al., 2020). The smart printers are also able to communicate and it is expected that in future there will be standardized mobile printing platforms which will function despite the printer brands.
· CVE-2019-6332-The IoT printers are vulnerable to malware attacks due to their powerful processors and the advanced operating systems. These softwares are managed remotely, store and generate very essential data and therefore this provides a perfect spot for the attackers to attack. The hackers mainly use a mobile device to access the printer and thereby inject a malware to intercept and read data (Margaret et al, 2017). They further trickand prompt the user to send malicious code hidden within the print file. These hackers breach the firewall and send the code to all PCs in the organization and therefore sensitive information is leaked to the public.
· However, these vulnerabilities can be prevented by protecting data with encrypted printing, scanning and hard disks. The printers can as well be loaded with anti-malware features to detect and report such unauthorized access.
Device 2: IoT Tagging Device
· The IoT tagging devices are mainly used to track maintenance of equipment in organization.They help the maintenance personnel to organize the tools and equipment. They also provide maintenance personnel with visibility into the inventory and therefore they are able to organization their tools
· CVE-2020-15858-These devices are vulnerable to hacking due to weak passwords or unencrypted passwords. These devices are also vulnerable due to the insecure network internet connections (Ido & Gareth, 2016). These connections compromise with the confidentiality and the integrity of these devices and thereforeexposing sensitive information.
· However, these vulnerabilities can be addressed and prevented in the hospitals, by ensuring the devices are well encrypted and also encouraging the employees to use strong passwords in their PCs.They should also be maintaining firmware updates for security patches
· I would recommend the hospital to continue using the device provided the employees take the specific measures so as to minimize the cases of security breaches. I would also recommend the hospital to encourage and educate the doctors to be extravagant with the patient’s information so as to avoid compromising with their confidentiality.
References
Dae Sung Jang, Hyo Seung Lee, Jae Chul Oh, (2020), Design of IoT System for 3D Printer Multi-Management: The Journal of Electronic Communication Sciences 15(4),759-764
Ido Nevat, Gareth Peters, (2016), Location of Things: Geospatial Tagging Pf IoT Using Time-Of-Arrival: Signal and Information Processing Over Networks 2(2),174-185
Margaret Mohamed, Matthew Tucker, David Rumph, (2017). Printer Controller for Objects Optimized Printing
