Category: security

Episode 389: Is Matter ready for its close up?

I’m in Austin this week, for Silicon Labs’ Works With event, and while there I hosted a panel that provided a good sense of what is going to happen with the Matter smart home interoperability protocol. I think Kevin is a bit more optimistic than I am. We also got some small updates on Amazon’s Sidewalk Network plans, which we discuss. After that, we talk about some news from Silicon Labs, and why folks in the IoT should keep an eye on Apple’s satellite plans. Then we talk about Lutron’s new smart paddle switch and dimmer that will fit right into existing home decor as well as how long certain device lifespans should be in the wake of Eero canceling support for its first-generation mesh routers. We then look at what is likely the next-generation wired Nest Hello doorbells, and look at some new resources for mapping out smart building capabilities before discussing funding for industrial IoT middleware provider Litmus Automation. We end by answering a listener’s question about smart smoke alarms and sending notifications to a phone.

The new Diva paddle switch and dimmer. Image courtesy of Lutron.

Our guest this week is Prashant Kanhere, the CTO of PayRange. PayRange provides a Bluetooth-based module that installs on a vending machine, washing machine, or pool table and replaces coin payments with electronic payments. I’ve followed this company for years and was stoked to see they had half a million devices under management now. With that scale, the company has figured out how to monitor those devices and how to update their firmware over tiny sips of connectivity. It’s a process that could come in handy for other IoT devices on low data-rate networks that need security or feature updates. We also discuss how the app works and the future of smart pool tables for a bit of fun. Enjoy the show.

Host: Stacey Higginbotham and Kevin Tofel
Guest: Prashant Kanhere, the CTO of PayRange
Sponsors:  Infineon and Silicon Labs

  • Matter may be too little, too late
  • The IoT should keep an eye on Apple’s satellite ambitions
  • Lutron’s new switch will fit right in
  • Dynamic pricing could come for commercial laundromats
  • Smart pool tables are in the future

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 386: We question Nova Labs’ 5G deal

Nova Labs, the company behind the decentralized Helium IoT network, has acquired FreedomFi, a company trying to build a decentralized 5G network. Kevin and I share our doubts about the value of a decentralized 5G network and question how this might work before moving on to discuss an array of security news. We start with the latest report on OT security from cybersecurity firm Claroty before sharing research on air-gapped networks bypasses with lights and sound. We end with a story about Amazon patching Ring apps on Android devices and my hope of a new tool that could make it easy to monitor devices that might invade your privacy. We also talk about a new wearable that tracks mood, Kevin’s frustration with devices, Nordic Semiconductor’s foray into Wi-Fi chips, Chamberlain’s reversal of HomeKit support, and InfluxDB announcing native connectors for MQTT. We end the show by answering a listener question about NovaLabs and its 5G plans.

The Happy Ring will track your moods and is only available via a subscription. Image courtesy of Happy Health.

Our guest this week is Josh Corman, who returns to the show to discuss his work at the Cybersecurity and Infrastructure Security Agency (he just joined Claroty as vice president of cyber safety strategy). Infrastructure in the U.S. and in many other countries has become increasingly attractive to hackers seeking ransoms or more serious disruption. Whether it’s someone hoping for profits or a nation-state, Corman points out some of the easiest and most effective steps an entity can take, even if that organization doesn’t have a formal cybersecurity program — or the budget for one.  He starts with the Bad Practices list from CISA that states organizations should avoid hard-coded passwords, establish multi-factor authentication and to avoid using software that has reached its end of life. We also discuss an easy effort to get your Stuff off Search, a program that helps any IT person suss out open ports on popular search sites such as Shodan, Censys and Thingful. It’s so easy I can do it.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Josh Corman, Founder, I am The Cavalry and VP Cyber Safety Strategy at Claroty
Sponsors: Silicon Labs and Impinj

  • We have big concerns about a decentralized 5G network’s viability
  • More vulnerabilities are showing up in firmware
  • Here’s a mood ring for the 21st century
  • We need to get more companies to do the bare minimum for cybersecurity
  • How to get your stuff off search and start securing your network

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 385: Google Cloud kills IoT Core and hearing aids get smart

This week’s show kicks off with a whispered bang that Kevin will soon hear, thanks to the FDA approving over-the-counter hearing aids. We talk about what happened and what it means for innovation in wearables before then tackling Google killing off its Google Cloud IoT Core service that manages device data and connects that data to Google’s Cloud Platform. Then we turn to security news including a John Deere hack shared at Defcon last week and an “Evil PLC” attack that affects industrial controllers from all major vendors. The smart home also gets a cool project called Fluid One that will create a network of ultra wideband sensors in a home which then lets you control devices by pointing a phone in their direction. With Omdia stating that this year there will be 2 billion smart home devices globally, we should figure out easier ways to control them. Finally, we talk about research that lets you power wearable sensors with sweat. It’s gross, but also really useful. We end the show by answering a listener question about continuous video recording on Apple’s HomeKit Secure Video.

Hearing aids can now be sold over the counter, which should lower costs and drive more innovation.

Our guest this week is Chris Albrecht, the founder and editor of Ottomate, a newsletter dedicated to food robotics. We talk about where you’re likely to see food robots first, and what they might look like. He then discusses how many places that already have robots serving diners and frying their food. Plus, we get a glimpse of a future food court comprised of meal-making vending machines that could line the lobby of a hotel, providing hot food even if the hotel doesn’t offer room service. And of course, we talk about delivery robots and how inefficient it is to use a two-ton vehicle to deliver two tacos. Our automated world of food delivery and cooking awaits us, and I’m honestly eager to see it. Enjoy the show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Chris Albrecht, founder and editor of Ottomate.news
Sponsors: Silicon Labs and Impinj

  • We’re excited for more innovation in hearing aids.
  • Our favorite hacks from Defcon.
  • Powering wearables could become a sweaty business.
  • All the places food vending machines could thrive.
  • Where is my robot delivery driver, and how far might it travel?

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 384: Here’s why Amazon really bought iRobot

This week’s show kicks off with our discussion of Amazon’s planned acquisition of iRobot, the maker of Roomba robotic vacuums for $1.7 billion. We then talk about a survey from Parks Associates that indicates almost a third of people using AirTag-style trackers to track people without their knowing and why users and companies must focus on consent. Then we hit on another ethics issue associated with a connected Epson printer that stops working after a set period of time, also unbeknownst to the user. In non-ethics news, Feit has purchased LIFX assets, Energous got FCC approval for sending up to 15 watts of power over the air for wireless charging and Qualcomm signed a deal with Global Foundries to ensure its chip supply through 2028. While on the topic of chips, we talk about software that runs on existing ESP32 that uses Wi-Fi for person detection and sensing, and future Apple products for the smart home. We end with a listener question about whether he should buy a new DIY hub and devices, or wait for Matter gear.

LIFX assets are now owned by Feit. Image courtesy of LIFX.

Our guest this week is Mark Benson, the head of Samsung SmartThings US. Benson is on the show to explain how SmartThings plans to eliminate the use of Groovy apps on hubs. The way forward is using APIs for cloud-to-cloud integrations, and LUA-based event handlers for smart apps that run locally. The final shift from Goovy takes place Sept. 30 so get ready for disruption if you have an older, niche routine or app on SmartThings, or update before then. Benson also shares more information on how SmartThings plans to support Matter and what it will mean for Samsung’s overall strategy in the smart home. We dig into what it means to be a Matter controller versus a Matter bridge and what role SmartThings will play. It’s a good show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guests: Mark Benson, the head of Samsung SmartThings US
SponsorsSilicon Labs and Impinj

  • Amazon buys iRobot to build out the next generation of the smart home
  • I’m surprised to see how many people are secretly tracking others
  • We need expiration dates for smart devices
  • SmartThings gets ready for its final goodbye to Groovy
  • How SmartThings plans to adopt Matter

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 382: Is Helium full of hot air?

We start this week’s show with a deep dive into a popular post from this week about the Helium network. The report pointed out that Helium only made $6,500 in the month of June from data rates. We explain why that’s not a surprise and what it will take to get those numbers up. Then we talk about Apple’s Air Tags and their potential use to track thieves and suitcases. Then Kevin reviews the Eve Motion with Thread sensor and then we focus on the excellent article from CNET that documents when Ring, Nest, Arlo and other camera companies will share your video data with police. The we cover shorter stories from Drover AI, two satellite deals including a $3.4 billion European acquisition deal, and updated lighting features from GE Cync. We then answer a listener question about Insteon’s plan for an annual fee for cloud connectivity and services.

My suitcase and obligatory Air Tag. Image courtesy of A. Allemann.

Our guest this week is Jim Ethington, CEO of Arable, a precision agriculture company. He’s on the show to talk about Arable’s $40 million in funding, and what Arable has learned in the last six years of operation. We also talk about the myth of using data to create “perfect predictions” and what sorts of predictions are more realistic when discussing how farm sensors can help farmers increase yields. Then we discuss why farmers are looking beyond simple ROI measurements when adopting technology and how sensor platforms such as Arable’s can help make their investments in sustainability or traceability pay off. We end with a list of hardware that Ethington would like to see for future field sensors. These include better connectivity options and sensors that provide more options for detecting different wavelengths of light. Enjoy the show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Jim Ethington, CEO of Arable
Sponsors: InfluxData and Intent

  • Helium is a legit business, but is it worth $1.2 billion?
  • The Air Tag is a tool for good or evil
  • How Ring and Google decide what videos to share with police
  • The future of precision farming goes far beyond greater yields
  • Sensors with different spectral ranges will let us better monitor plant health

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 381: Alexa and Qualcomm embrace ambient tech

This week’s show kicks off with our discussion of several announcements from Amazon’s Alexa Live developers’ conference held Wednesday. Alexa is getting several features as part of the launch of the Matter smart home interoperability protocol that should launch in the fall. For example, users will be able to name a device once and put it in a group and that nomenclature will work across Alexa, manufacturer apps, and other controllers such as Google Home or Apple’s Siri. Amazon also shared new ways for developers to access context in the home thanks to its new Ambient Home Dev Kit and new ways for developers to build Routines for Alexa. Also ahead of Matter, Thread is getting an update, so Kevin and I explain what that entails before turning to Qualcomm’s new wearables chip.

The Google Glass AR prototype. Image courtesy of Google.

One of the keywords for Qualcomm’s new wearable platform is ambient, as the chipmaker has moved several features to a low-power always-on processor to ensure that smart watches built using the platform have always-on sensing, wake-word detection, and a nice display without compromising on battery life. Then we talk about FCC Chairwoman Jessica Rosenworcel’s inquiry into data-gathering and sharing practices by cell phone providers, especially when it comes to location data. We also discuss Google’s new plans for AR glasses, using the IoT to detect forest fires, and yet another security flaw. This time it’s in a GPS tracker from a Chinese provider. We also say goodbye to Microsoft’s Sam George who retired from his role leading Microsoft Azure IoT. We end by answering a listener question about tracking the temperature of a fish pond.

Hosts: Stacey Higginbotham and Kevin Tofel
Sponsors: InfluxData and Intent

  • With new features Alexa is a smarter brain for the smart home
  • Thread’s getting an update ahead of Matter
  • Qualcomm’s wearable chip is better late than never
  • The FCC wants to know what carriers want with your location
  • Google’s new glasses respect the camera shy

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 377: Why there were 56 OT vulnerabilities this week

This week we cover the Ericsson mobility report that offers some stats on cellular IoT connections, including the surprising nugget that we won’t see 4G/5G connections surpass 2G/3G connections until some time next year. Then we hit another report. This one is from NPR and covers the state of audio and smart speakers. It proves that growth is slowing for smart speakers and that we may not do as many things with voice as we think. In dystopian news we cover China using COVID tracking apps to lock down protesters, and Microsoft stopping sales of some facial recognition tools. In new product news we talk about the latest Philips Hue gear, a new material that could generate electricity for wearables, and new MCUs from NXP. We also address the closure of SmartDry and explain how Google’s update on the Nest Max Hub may break your Nest x Yale lock. We end by answering a listener question about more accurate motion sensors.

Our guest this week is Daniel dos Santos, head of security research at Vedere, a business unit of Forescout. He’s on the show to discuss why Forescout released 56 new OT vulnerabilities dubbed ICEFALL. He shares the design flaws that led to these vulnerabilities and more importantly, explains what needs to happen if compromised controllers or devices can’t be fixed. He also shares a startling stat about how many industrial customers are actually updating their devices after a vulnerability has been disclosed, and how to encourage more of them to address security flaws. If you want to learn more abut securing critical infrastructure, this is a good place to start.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Daniel dos Santos, head of security research at Forescout
Sponsors: Nordic Semiconductor and Wirepas

  • There are still more 2G and 3G IoT connections than 4G/5G ones
  • With smart speakers it’s the same as it ever was
  • Are the new Hue track lights for you?
  • The ICEFALL vulnerabilities are a sign of progress actually.
  • This vendor says only one in ten patch their OT gear

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 376: Senator calls out video doorbells … again

This week’s show kicks off with another look at Ring’s potential to become a surveillance tool, this time prompted by a letter from Senator Ed Markey who wants Amazon to answer some questions. We then talk about a new capability for InfluxData’s time series database and explain why it matters before encouraging everyone who listens to the show or visits the site to get comfortable with doing things yourself. We then give a brief update on Insteon’s buyer and what it might mean before covering two industrial stories. First up is Siemens’ acquisition of Senseye, a company that provides predictive maintenance software, and then we discuss a remote factory experiment between Finland and South Korea. In smaller news we discuss the number of smart locks in U.S. households, Orro signing a deal with RTI for smarter light switches, and a new HomeKit enabled smart plug from TP-Link. We close by answering a listener question about the best smart lighting options to use in a new home.

Image courtesy of Parks Associates.

Our guest this week is Evan Kaplan, CEO of InfluxData, who is talking about the demand for time series data for the internet of things. InfluxData makes a time series database for storing trading and sensor data. We discuss how companies are using time series data as part of closed loop systems, and what the future tech stack for the IoT will be. He also shares his strategies to get developers interested in a platform and why he thinks appealing to developers will be essential for success in the industrial IoT. It’s a fun show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guests: Evan Kaplan, CEO of InfluxData
Sponsors: Nordic Semiconductor and Wirepas

  • Senator Markey wants more information about Ring’s capabilities
  • Be bold, and try to DIY your next project
  • Remote factory project has incredibly low latency
  • Why the IoT loves time series data
  • What we need to build better architectures for a real-time IoT

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 375: Arduino gets $32 million for enterprise IoT

This week’s show is an exercise in controlled chaos, as I am once again quarantined in a hotel room (this time with my teen). Kevin and I discuss Apple’s Worldwide Developers Conference and Apple’s claim that HomeKit is the foundation of the upcoming Matter smart home protocol. Insteon users got a shock this week when their formerly dead hubs mysteriously turned on and their cloud-based integrations began working. We explain what we know. SmartThings is getting a new app, and Microsoft signed a multi-year deal to help Procter & Gamble with its digital transformation. In security news, we discuss new ransomware that starts on the IT side but can move over to the OT side to wreak havoc, as well as a new program from Dragos to help small businesses secure their OT networks. Finally, in chip news radar chip company Vayyar raised $108 million and Arm launched a new low-power image sensor for embedded vision. During the IoT Podcast Hotline, we answer a listener question about how to prepare his smart home for a move.

Arduino launched the Portenta line of boards for the enterprise a year and half ago. Image courtesy of Arduino.

Our guest this week is Fabio Violante, the CEO of Arduino. Arduino raised €30 million ($32 million) this week as it seeks to add software and hardware to meet the needs of enterprise and industrial product designers. We discuss why Arduino is branching out from the DIY market, and how it differentiates itself from other computing platforms such as the Raspberry Pi or Nvidia’s Jetson Nano. Violante also shares his observations about the state of the market and the popularity of certain connectivity options, protocols and cloud platforms. It’s a good show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Fabio Violante, the CEO of Arduino
Sponsors: Nordic Semiconductor and Wirepas

  • Apple contributed a lot to HomeKit and we all will benefit
  • Who is the new Insteon owner?
  • Microsoft is helping Procter & Gamble make better paper towels
  • Good and bad news for OT security
  • Why Arduino is stepping up to the enterprise

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 374: Peekaboo offers privacy for the smart home

This week’s show kicks off with our favorite topic: bringing context into the smart home. This time it’s iRobot and its new operating system that aims to bring the smart home together. From there we discuss a merger between satellite IoT companies and a new idea for building a privacy-centric smart home from the folks at Carnegie Mellon. In more enterprise news, BT wants to stop being a telco and become a “tech-co” with a focus on digital transformation, while a group of chipmakers want to create a consortium to buy Arm. In smaller news bits we’ve got some more unsettling news around John Deere tractors, a smart blinds retrofit from Somfy and the end of Amazon’s Cloud Cam. We’re not mad. Kevin also reviewed Ecobee’s newest and fanciest thermostat and came to a surprising conclusion. In our IoT Podcast Hotline we answer a question from someone who is switching to HomeKit.

Image courtesy of iRobot.

Our guest this week is Ron Rock, CEO and co-founder of Microshare.io, who discusses why his company started building pre-packaged IoT solutions and selling the data, as opposed to trying for some horizontal IoT platform. He also talks about the next big use cases for enterprise IoT after COVID. First up is figuring out how to best use corporate real estate in a hybrid work environment and how to rightsize corporate real estate holdings post-pandemic. His third use case is my favorite. He talks about why ESG (Environmental, Social and Governance) demands are driving companies to adopt IoT solutions across a wide variety of use cases and industries. We end with a bit of conversation about new building standards and how he expects those standards to develop in the next three to five years. It’s a fun show.

Host: Stacey Higginbotham and Kevin Tofel
Guest: Ron Rock, CEO and co-founder of Microshare.io
Sponsors: LoRaWAN World Expo and InfluxData

  • Why iRobot could turn the smart home into a robot
  • The IoT satellite consolidation is here
  • Who should buy Arm? Everyone.
  • COVID drove enterprise IoT spending, but what’s next?
  • All your pre-2020 occupancy data is worthless now

Podcast: Play in new window | Download | Embed

Subscribe: RSS