Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. An attacker could exploit the flaws to execute arbitrary code on unpatched routers, crash the devices, or gain access […]
The post D-Link issues beta hotfix for multiple flaws in DIR-3040 routers appeared first on Security Affairs.
Read More D-Link issues beta hotfix for multiple flaws in DIR-3040 routers
Curtis Simpson, CISO at Armis, discusses the top qualities that all CISOs need to possess to excel.
Read More The Evolving Role of the CISO
How did investigators ask a romance scammer out on a date, how are smart homes continuing to play dumb, and is it time for social media sites to do more about racist football fans?
All this and much more is discussed in the latest edition of the awa…
Read More Smashing Security podcast #236: Stingrays, soccer, and smart homes
Jen Easterly, former NSA official and Morgan Stanley vet, will take up the lead at CISA as the ransomware scourge rages on.
Read More New CISA Director Confirmed, White House Gains Cyber-Director
I’ve spent more time IoT’ing my house over the last year than any sane person ever should. But hey, it’s been strange times for all of us and it’s kept me entertained whilst no longer travelling. Plus, it’s definitely added
Read More The Internet of Things is a Complete Mess (and how to Fix it)
Nate Warfield, CTO of Prevailion and former Microsoft security researcher, discusses the many security challenges and failings plaguing this industry.
Read More Why Healthcare Keeps Falling Prey to Ransomware and Other Cyberattacks
Some sweltering residents of Texas are reporting that they are unable to lower the temperature on their Wi-Fi enabled “smart” thermostats after it was mysteriously raised, and they are struggling to understand why.
Read more in my article on the Bit…
Read More Smart thermostats cranked up remotely by Texas energy firms, as consumers swelter in heat wave
When it comes to evaluating technology in the home, there seems to be no shortage of new devices and shiny gadgets, mainly part of the Internet of Things (IoT), to discuss. Unfortunately, there seems to be no shortage of security issues to consider reg…
Read More Voice-Activated Device Privacy: What You Need to Know
Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms.
Read More Bugs in NVIDIA’s Jetson Chipset Opens Door to DoS Attacks, Data Theft
An attacker with initial physical access (say, at a gym) could gain root entry to the interactive tablet, making for a bevy of remote attack scenarios.
Read More Peloton Bike+ Bug Gives Hackers Complete Control
A supply-chain component lays open camera feeds to remote attackers thanks to a critical security vulnerability.
Read More Millions of Connected Cameras Open to Eavesdropping
An analysis of the campaign revealed Cyberium, an active Mirai-variant malware hosting site.
Read More Moobot Milks Tenda Router Bugs for Propagation
The desktop conferencing IoT gadget allows remote attackers to install all kinds of malware and move laterally to other parts of enterprise networks.
Read More STEM Audio Table Rife with Business-Threatening Bugs
The US Army appears to have made a strategic withdrawal from advice it issued to remote workers last week about their use of smart IoT devices.
Read more in my article on the Bitdefender BOX blog.
Read More US Army tells remote workers to switch off their IoT devices (and then withdraws advice)
The ‘Send My’ exploit can use Apple’s locator service to collect and send information from nearby devices for later upload to iCloud servers.
Read More Apple’s ‘Find My’ Network Exploited via Bluetooth
Wi-Fi devices going back to 1997 are vulnerable to attackers who can steal your data if they’re in range.
Read More ‘FragAttacks’: Wi-Fi Bugs Affect Millions of Devices
Aamir Lakhani, researcher at FortiGuard Labs, discusses leading-edge threats related to edge access/browsers/IoT, and the COVID-19 vaccine, as a way of getting into larger organizations.
Read More Shifting Threats in a Changed World: Edge, IoT and Vaccine Fraud
Millions of smart TVs in China may have collected data without the knowledge of viewers about Wi-Fi networks found within range and attached devices.
Read more in my article on the Bitdefender BOX blog.
Read More Chinese smart TVs caught hoovering up data about devices on customers’ networks
A rapid proliferation of IoT has opened unsupervised doors to cybercriminals. How can we apply the principles of Zero Trust to address this challenge?
The post How to apply a Zero Trust approach to your IoT solutions appeared first on Microsoft Security.
Read More How to apply a Zero Trust approach to your IoT solutions
It was 1977, and soon-to-be-fans were greeted with a masterful score and scrolling text. Darth Vader and Princess Leia share the screen in those opening moments, and the Star Wars universe was created. Nearly 30 years later, a new film would introduce …
Read More The Death Star’s Demise: Can You Trust Your IoT Vendors?
Call comes after Microsoft discovers vulnerabilities in devices on industrial, medical, and enterprise networks
The post Infosec pros urged to patch IoT and OT devices first appeared on IT World Canada.
Read More Infosec pros urged to patch IoT and OT devices
Azure Defender security team discovers that memory allocation is a systemic problem that can allow threat actors to execute malicious code remotely or cause entire systems to crash.
Read More Microsoft Warns 25 Critical Vulnerabilities in IoT, Industrial Devices
Lane Thames, PhD and principal security researcher at Tripwire explains the challenges you might not have considered in IT/OT convergence. Spotify: https://open.spotify.com/show/5UDKiGLlzxhiGnd6FtvEnmStitcher: https://www.stitcher.com/podcast/the-tripw…
Read More Industrial Security: Not Just IT and OT, but Old OT and New OT
Daycare camera product NurseryCam was hacked last week, the company was forced to shut down its IoT camera service. On Friday, The Register become aware of the compromise of the NurseryCam network. NurseryCam is produced by the companies FootfallCam Ltd and Meta Technologies Ltd. In response to the incident, the company shut down its IoT […]
The post NurseryCam daycare cam service shut down after security breach appeared first on Security Affairs.
Read More NurseryCam daycare cam service shut down after security breach
Learn how Microsoft ensures operational resilience for Azure datacenters with Azure Defender for IOT and Azure Sentinel
The post Securing Azure datacenters with continuous IoT/OT monitoring appeared first on Microsoft Security.
Read More Securing Azure datacenters with continuous IoT/OT monitoring
Hundreds of thousands of individuals are potentially affected by this vulnerability.
Read More Misconfigured Baby Monitors Allow Unauthorized Viewing
As I progressively make my house smarter and smarter, I find I keep butting against the intersection of where smart stuff meets dump stuff. Take light globes, for example, the simplest circuit you can imagine. Pass a current through it, light goes on. Kill the current, light goes off. We
Read More Controlling Smart Lights Using Dumb Switches with Shelly and Home Assistant
A researcher has uncovered disturbing security holes in a widely-used CCTV service designed to let parents remotely watch their children playing at nursery.
Read more in my article on the Bitdefender BOX blog.
Read More NurseryCam has serious security issues, claims researcher
Linux and Unix operating systems require regular patching like any IT system, but as security professionals, ethical hackers, and criminal hackers will tell you, regular Linux and Unix patching is often neglected.CVE-2021-3156 sudo VulnerabilityLast we…
Read More The Linux Flaw you can’t afford to Ignore (CVE-2021-3156)
Anyone buying a home security camera is probably buying it with the intention of increasing their security, not decreasing it.
And yet once again an internet-enabled CCTV camera has proven itself to be vulnerable to attack, allowing Peeping Toms to …
Read More Hackers could live-stream your home through your LifeShield security camera
A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, November 2020.Manchester United FC remains impacted by a seemly major cyber-attack, which I covered in a …
Read More Cyber Security Roundup for December 2020
What. A. Week. Blog post every day, massive uptick in comments, DMs, newsletter subscribers, followers and especially, blog traffic. More than 200,000 unique visitors dropped by this week, mostly to read about IoT things. This has been a fascinating experience for me and I’ve enjoyed sharing the journey, complete
Read More Weekly Update 219: IoT Unravelled with Scott Helme
This is the fifth and final part of the IoT unravelled blog series. Part 1 was all about what a mess the IoT landscape is, but then there’s Home Assistant to unify it all. In part 2 I delved into networking bits and pieces, namely IP addresses, my Ubiquiti UniFi
Read More IoT Unravelled Part 5: Practical Use Case Videos
The first few parts of this series have all been somewhat technical in nature; part 1 was how much of a mess the IoT ecosystem is and how Home Assistant aims to unify it all, part 2 got into the networking layer with both Wi-Fi and Zigbee and in part
Read More IoT Unravelled Part 4: Making it All Work for Humans
5G and the IoT: A Look Ahead at What’s Next for Your Home and Community October is Cybersecurity Awareness Month, which is led by the U.S. government’s Cybersecurity and Infrastructure Security Agency (CISA) in conjunction with the National Cyber Security Alliance (NCSA)—a national non-profit focused on cybersecurity education & awareness. McAfee is pleased to announce […]
The post 5G and the IoT: A Look Ahead at What’s Next for Your Home and Community appeared first on McAfee Blogs.
Read More 5G and the IoT: A Look Ahead at What’s Next for Your Home and Community
Seven Tips for Protecting Your Internet-Connected Healthcare Devices: Cybersecurity Awareness Month October is Cybersecurity Awareness Month, which is led by the U.S. government’s Cybersecurity and Infrastructure Security Agency (CISA) in conjunction with the National Cyber Security Alliance (NCSA)—a national non-profit focused on cybersecurity education & awareness. McAfee is pleased to announce that we’re a proud […]
The post Seven Tips for Protecting Your Internet-Connected Healthcare Devices appeared first on McAfee Blogs.
Read More Seven Tips for Protecting Your Internet-Connected Healthcare Devices