This is probably the wrong topic to post this but its the best I could find.
I see that the moment I flash and turn my devices on with the Blynk code, it’s available online. You go to the blynk IP along with the auth token and you have access via URL and REST. No other authentication kind of thing needed.
I’m no security expert, but this feels a bit risky to me. What if someone gets hold of hte auth tokens, brut force hacks random auth tokens against the blynk IP etc.? They’d be able to wreak havoc on devises totally randomly or specifically targetting a person/device.
Is there something I’m missing? Is this service more secure than I understand? Is there anything in place to let me better secure sensitive devices?