Basically the whole discussion about Hillary Clinton’s private mail server and whether it was accurately protected or not has nothing to do with the Internet of Things, right? Almost. Based on this article Did the Clinton Email Server Have an Internet-Based Printer? it seems that a printer accessible through the Internet was attached to the same network as well. At least there is a domain name called printer.clintonemail.com resolving to their IP address. There is no proof that there was ever a printer connected to it but at least it looks that way. If it is true, however, there is a huge risk that the environment can be exploited leveraging vulnerabilities in the printer itself.
On the one hand side it is scary to see such things happen on this level of exposure but – honestly – do we really expect in our environments that this will not be the case? I would assume that we have employees with not that well maintained networks at home using their private e-mails for business. Or public mail servers like gmail?
In a lot of cases, the user is looking for the simplest and most straightforward way to solve his/her problem – it seems that this is true even for the top ranks in governments. Therefore we need to understand our users and help them to go after their business with acceptable risks.