OWASP: Weak passwords are biggest threat to IoT | The Daily Swig
In at number two was insecure network services, and number three was insecure ecosystem interfaces such as APIs, cloud, or mobile interfaces outside of the devices that can lead to compromise of the machine.
Speaking to The Daily Swig, project lead Daniel Miessler said that the OWASP research team had no doubts when it came to the number one threat.
“The number one issue was remarkably easy, and everyone we show seems to agree. It’s the use of weak credentials, which leads to many types of remote compromise. It was the combination of probability and impact (both being off the charts) that made it the obvious choice,” Miessler told The Daily Swig.