Non-fraudulent vs. Fraudulent Threats ( GROUP 6 )

Phishing attempts via SMS

Malware-laden applications

Deliberate attacks for financial gain

Mistakes or technical shortcomings

Using factory default passwords because the user didn't change them

Lack of firmware updates due to device limitations

Botnet formation using default credentials to launch DDoS attacks

Using unencrypted communication protocols like Telnet

They have high computing power that attracts attackers.

They often struggle to support strong authentication and encryption

They are not multiplying rapidly.

They do not process sensitive personal data.

Disguised apps that inject malware

Spyware that captures user activity

Phishing via SMS to trick users into revealing credentials

Hijacking devices to demand a ransom

Spyware and keyloggers

Excessive app permissions leading to unintentional data leakage

Malicious APKs

Vishing

A decline in data sensitivity.

The decrease in the number of smart appliances.

The use of strong encryption on all devices.

The rapid multiplication of IoT and mobile endpoints

Non-fraudulent IoT threats

Fraudulent mobile threats

Non-fraudulent mobile threats

Fraudulent IoT threats

Educating users about phishing

Enforcing regular firmware updates

Changing default credentials

Network segmentation

Factory default passwords being unchanged

Identity spoofing of devices to infiltrate networks

Use of insecure protocols like unencrypted MQTT

Lack of firmware updates

Using unprotected

Wi-Fi.

Allowing excessive app permissions

Disabling OS updates

Leveraging IoT SAFE and SIM-based secure identity frameworks