IOT Makes it Easier to Steal Your Data

Hello!
With IoT technology becoming an integral part of daily life, we are exposing ourselves to new risks. Internet of Things devices bring sensors, cameras, microphones, and internet connectivity into our homes. How can we be sure these devices are not transmitting data where they shouldn’t?
Internet of Things Raises Major Privacy Concerns

However, there are limits to what data devices should and should not transmit. Some information may be acceptable for an Original Equipment Manufacturer (OEM) to collect, yet unacceptable to the end user.
Are consumers and OEMs aligned on these boundaries? According to a study conducted by Northeastern University and Imperial College London, the answer is no.
The researchers examined a range of consumer IoT devices, including smart TVs, streaming dongles, speakers, and video doorbells from major vendors such as Google, Roku, and Amazon.
The study revealed that most devices collected excessive amounts of data: IP addresses, device specifications, usage patterns, and location information. The devices not only sent this data to the OEM but also shared it with third-party companies that had no direct relationship with the user.

Among these third parties were numerous advertising companies that used the data to deliver more targeted advertisements to consumers.
In 2026, the CIA developed malware that kept smart TVs powered on to record users’ conversations. The “Weeping Angel” project, also known as “Fake Off mode,” placed people’s private lives at risk by exposing sensitive personal data.
The Challenge of IoT Privacy Policies
OEMs attempt to address privacy concerns by providing users with privacy policies. Before using a product, consumers can review documentation that describes what data the device collects and how that data is used. Accepting the policy is required to use the product.

Privacy policies are rarely an effective solution. These documents are often lengthy, filled with legal terminology, and difficult to understand. As a result, most users simply skip reading them.
Also read: RoboBrain 2.0: The AI Powering the Next Generation of Robots
Strict Regulation as a Path to Stronger IoT Security
As more companies collect large volumes of user data, many have begun encrypting the information their devices transmit.
While encryption helps protect data from interception, it also makes it more difficult for regulators to determine exactly what information is being collected and where it is going. This limits oversight of whether data reaches only the OEM or additional third parties.

Meaningful progress requires strict regulation. Laws should limit the number of companies permitted to access data from IoT devices. While it makes sense for an OEM to collect necessary information, there is no justification for advertisers gaining unrestricted access.
Consumers will continue to adopt connected devices. When doing so, it is important to research not only the product but also the manufacturer. Reputable IoT developers prioritize security by default and ensure data does not reach third parties from the outset, rather than reacting only after public scrutiny. In such cases, data collection serves solely to operate the IoT system.
Thank you!
Subscribe to our newsletter! Join us on social networks!
See you!
Subscribe to our newsletter
Get the latest Web3, AI, and crypto news delivered straight to your inbox.