2010 and IoT - Cyber Security Informer

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Krebs on Security

JANUARY 24, 2023

Many of the infected systems were Internet of Things (IoT) devices , including industrial control systems, time clocks, routers, audio/video streaming devices, and smart garage door openers. Later in its existence, the RSOCKS botnet expanded into compromising Android devices and conventional computers.

Cybercrime

Cybercrime Advertising IoT Malware

Law enforcement and Microsoft join forces to dismantle botnet using LED Light Control Console

Security Affairs

APRIL 20, 2020

Threat actors used the consoles to deliver malware and ransomware through an IoT botnet that was also used to launch distributed denial-of-service (DDoS) attacks. Unfortunately, the number IoT botnets continues to increase, millions of vulnerable devices could be abused by threat actors to carry out malicious activities.

IoT

IoT DDOS Advertising Malware

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

Kilmer said when Spur first started looking into Faceless, they noticed almost every Internet address that Faceless advertised for rent also showed up in the IoT search engine Shodan.io Those with IoT zero-days could expect payment if their exploit involved at least 5,000 systems that could be identified through Shodan.

Malware

Malware Passwords Accountability Advertising

MY TAKE: DigiCert and Oracle partner to extend digital trust and scalable infrastructure globally

The Last Watchdog

MAY 9, 2023

This was all part of the Lehi, Utah-based vendor’s efforts to support enterprise cloud migration and the rise of IoT systems, which were both gaining steam. Amazon had introduced Amazon Web Services in 2006 and Microsoft Azure became commercially available in 2010. Back in Silicon Valley, Oracle was playing catchup.

Cloud Migration

Cloud Migration Digital transformation Engineering Retail

Router security in 2021

SecureList

JUNE 8, 2022

Number of router vulnerabilities according to cve.mitre.org, 2010–2022 ( download ). Number of router vulnerabilities according to nvd.nist.gov, 2010–2022 ( download ). To find out why cybercriminals attack routers, it is first worth looking at the Top 10 malware detected by our IoT traps in 2021. Router-targeting malware.

DDOS

DDOS Passwords IoT Firmware

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

Security Affairs

FEBRUARY 2, 2024

The hacking tools developed by the US cyber spies can target mobile devices, desktop computers, and IoT devices such as routers and smart TVs. The archive includes confidential information, malicious codes, and exploits specifically designed to target popular products from various IT companies, including Samsung, Apple, Google, and Microsoft.

Computers and Electronics

Computers and Electronics Engineering Hacking Data breaches

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Security Affairs

FEBRUARY 15, 2020

The protocol Bluetooth Low Energy (BLE) was released in 2010 and it is designed to implement a new generation of services for mobile applications. We also urge SoC vendors and IoT product manufacturers to be aware of such security issues and to initiate focused effort in security testing.” ” continues the experts.

IoT

IoT Firmware Advertising Hacking

Former CIA employee Joshua Schulte was convicted of Vault 7 massive leak

Security Affairs

JULY 14, 2022

The hacking tools developed by the US cyber spies can target mobile devices, desktop computers, and IoT devices such as routers and smart TVs. The arsenal used by the Central Intelligence Agency hackers was composed of hacking tools developed by the CCI’s Engineering Development Group (EDG).

Engineering

Engineering Hacking Mobile IoT

Mobile security advances to stopping device exploits ? not just detecting malicious apps

The Last Watchdog

JUNE 13, 2018

And now we are on the verge of making matters dramatically worse as smartphones and IoT devices proliferate. Launched in 2010 by a Samsung consultant who saw the handwriting on the wall, Zimperium has grown to 140 employees and attracted $60 million in venture capital from Warburg Pincus, SoftBank, Samsung, Telstra and Sierra Ventures.

Mobile

Mobile Banking IoT Social Engineering

Podcast Episode 140: passwords are dying. What will replace them?

The Security Ledger

APRIL 2, 2019

The company’s technology works on mobile, PC & IoT platforms, delivering strong, multi-factor authentication. He served for 8 years as co-founder and CEO of PGP Corporation until it was acquired by Symantec in 2010. Phil has a long history in the authentication and data security space.

Passwords

Passwords Authentication Technology IoT

Life at ForAllSecure: Robert Vamosi, Director of Product Marketing

ForAllSecure

MAY 10, 2023

Somebody from an IOT startup reached out to me and said, “How would you like to work as a Product Marketing Manager?" So I became a Product Marketing Manager for an IOT startup. While I was doing that, I wrote my first book on IOT security. It still is. How have you grown professionally while working at ForAllSecure?

Marketing

Marketing Engineering IoT Technology

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

WD: The vulnerability report CVE-2018-18472 affects My Book Live devices originally introduced to the market between 2010 and 2012. Paulos Yibelo is a reputable security researcher who uncovered multiple security issues and leaks affecting major VPN providers last year, with number of severe IoT CVEs under his name.

Firmware

Firmware IoT VPN Authentication

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

Allegedly developed by US and Israeli operatives, Stuxnet was discovered circulating through Iranian nuclear energy facilities in 2010. The first worm of note that accomplished this was Stuxnet. Because it was so complex, Stuxnet was not easy for just anyone to replicate. Branching attacks. Fast forward to 2017. Addressing the exposure.

Hacking

Hacking Energy and Utilities System Administration Accountability

SBOMs: Securing the Software Supply Chain

eSecurity Planet

OCTOBER 26, 2021

Developed by the Linux Foundation in 2010, the Software Package Data Exchange (SPDX) is the leading open standard for SBOM formats. Read more: Attackers Exploit Flaw that Could Impact Millions of Routers, IoT Devices. SPDX: Software Package Data Exchange. The result will be a more robust ecosystem built on transparency.

Software

Software Risk Healthcare Cybersecurity

News Alert: Nuvoton underscores its commitment to 8-bit MCU production sustainability

The Last Watchdog

JULY 6, 2023

Nuvoton was spun-off as a Winbond Electronics affiliate in July 2008 and went public in September 2010 on the Taiwan Stock Exchange (TWSE).

Computers and Electronics

Computers and Electronics Marketing Technology IoT

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 6, 2018

California recently became the first state in the union to pass a cybersecurity law addressing “smart” devices and Internet of Things (IoT) technology. The term IoT generally refers to anything connected to the internet, including smart home devices (e.g., Amazon’s Alexa, NEST thermostats, etc.).

IoT

IoT Cybersecurity Manufacturing Technology

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 5, 2018

California recently became the first state in the union to pass a cybersecurity law addressing “smart” devices and Internet of Things (IoT) technology. The term IoT generally refers to anything connected to the internet, including smart home devices (e.g., Amazon’s Alexa, NEST thermostats, etc.).

IoT

IoT Cybersecurity Manufacturing Technology

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

He retired as a colonel in 2010. He was previously senior manager at Deloitte, focused on IoT and industrial cybersecurity. Cedric Leighton is founder and president of Cedric Leighton Associates, a strategic risk and leadership management consultancy. John Johnson is cybersecurity leader for a large consumer manufacturing company.

Computers and Electronics

Computers and Electronics Technology Education Information Security

What is Digital Sovereignty and Why is it Important in a Cloud Environment?

Thales Cloud Protection & Licensing

MAY 26, 2022

The total amount of data on earth exceeded 1 zettabyte in 2010 and it has continued to grow exponentially since then. There are many factors driving the need for customers to move their data to the cloud and explosive data growth is one those factors. We are expecting 181 zettabytes of data by 2025 and it will continue to grow from there.

Cloud Migration

Cloud Migration Unstructured Data Encryption Big data

DDoS attacks in Q2 2021

SecureList

JULY 28, 2021

In particular, Gafgyt’s authors copied its implementation of various DDoS methods, such as TCP, UDP and HTTP flooding, as well as its brute-force functionality for hacking IoT devices via the Telnet protocol. Attacks on IoT honeypots. This involved studying the statistics on Telnet and SSH attacks on our IoT honeypots.

DDOS

DDOS DNS IoT Marketing

How to Protect Operational Technology (OT) from Cyber Threats

CyberSecurity Insiders

JUNE 2, 2023

Only a minority of infrastructural attack chains are the kind of “pure” OT compromises we famously saw in 2010 with Stuxnet, the 2018 Shamoon attacks on Saudi Aramco and more recently with 2020 EKANS ransomware attacks against Honda and Enel. Threat actors are also finding more ways to compromise OT environments.

Cyber threats

Cyber threats Technology Firewall Ransomware

How to Implement Zero Trust

eSecurity Planet

MARCH 17, 2021

By 2010, Forrester’s John Kindervag had presented the basic features surrounding the new concept known as zero trust. But even before the boom of IoT devices or the COVID-19 pandemic, trust was a major organizational vulnerability. Also Read: Top Zero Trust Security Solutions of 2021 . Ten years of zero trust.

Firewall

Firewall Network Security Architecture IoT

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

Founded in 2010 by veteran SaaS and DevOps industry leaders, Datadog specializes in optimizing the service-oriented architecture, helping organizations monitor user journeys and explore service relationships. Reviews highlight the interactive dashboard, level of customization, troubleshooting, and ease of use and implementation.

Marketing

Marketing DDOS Threat Detection DNS

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

ForAllSecure

SEPTEMBER 10, 2021

They began competing at DEF CON CTF, in 2010, and won first place in 2013 2014 2016 2017 and 2019. And we also have the ability to theme them in ways like we can focus on IoT challenges, right our challenges that are specific to, to the interest in the IOC, or IoT in ICS, different, different areas.

Hacking

Hacking Education InfoSec Engineering

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

Not long afterwards, in about the 2010 time frame, IAM vendors first arrived on the scene, including Optimal IdM, Centrify, Okta and CyberArk, followed by many others. These vendors all spun out of the emergence of a new set of protocols, referred to as federated standards, designed to manage and map user identities across multiple systems.

Government

Government Authentication Technology Data breaches

New Cyberthreats for 2021

Adam Levin

DECEMBER 7, 2020

Internet of Things, or IoT devices, already represent a mature technological industry. In a perfect world, they make life easier, and the products supported by IoT more useful. Unfortunately, IoT devices can be vulnerable to data leaks, cyberattacks and hackers. It is harder to dupe informed people.

IoT

IoT Artificial Intelligence Technology Scams

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

eSecurity Planet

MARCH 4, 2024

All sites incorporated the archaic FCKeditor plug-in, which stopped receiving support in 2010. Azure-Connected IoT Vulnerable to Remote Code Execution Type of vulnerability: Internet of things (IoT) RCE vulnerability. The fix: Update libraries and instances to versions patched after February 8, 2024.

IoT

IoT Internet Internet Ransomware

RSA USA 2017 In Review

The Falcon's View

FEBRUARY 27, 2017

If you've never been to RSA, or if you only started attending in the last couple years, then it's really hard to describe to you how dramatic the change has been since ~2010 when the numbers started growing like this (to be fair, yoy growth from 2016 to 2017 wasn't all that huge). good grief. let's drill into my key highlights. Size Matters.

InfoSec

InfoSec Education Accountability Big data

History of Computer Hacking and Cybersecurity Threats: From the 50s to Today

ForAllSecure

APRIL 21, 2023

The most famous example of this was the Stuxnet worm , which was discovered in 2010 and was believed to have been created by the US and Israeli governments to sabotage Iran's nuclear program. These attacks were carried out by governments and other organizations seeking to steal sensitive information or disrupt the operations of their rivals.

Hacking

Hacking Cybersecurity Internet Internet

Top Cybersecurity Companies for 2021

eSecurity Planet

AUGUST 13, 2021

Founded: 2010. Cybersecurity product categories: hybrid cloud security, intrusion prevention , advanced threat protection, encryption , endpoint security, email security, Web security, SaaS security, IoT security , threat intelligence. Zscaler made our top web gateways list and received a mention for its zero trust efforts too.

Cybersecurity

Cybersecurity Firewall Marketing Encryption

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Beyond Identity Identity management 2020 Private Expel Managed security service 2016 Private Tigera Zero trust for K8s 2016 Private Intrinsic Application security 2016 Acquired: VMware HackerOne Penetration testing 2015 Private Virtru Data encryption 2014 Private Cloudflare Cloud infrastructure 2010 NYSE: NET.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Presidential Cybersecurity and Pelotons

Schneier on Security

FEBRUARY 5, 2021

Presidents face special risks when it comes to the IoT, but Biden has the NSA to help him handle them. In 2010, President Barack Obama complained that his presidential BlackBerry device was “no fun” because only ten people were allowed to contact him on it.

Cybersecurity

Cybersecurity Internet Internet Wireless

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

The Last Watchdog

JULY 25, 2019

The Obama sanctions helped security analysts and the FBI piece together how Bogachev, around 2010, began running unusual searches on well-placed PCs he controlled, via Gameover Zeus infections. Meanwhile, a recent report from Nokia identifies the hottest new source of bots: IoT devices, such as home routers, baby cams and office equipment.

IoT

IoT Hacking Banking Government

Cyber Security Informer

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Law enforcement and Microsoft join forces to dismantle botnet using LED Light Control Console

Trending Sources

Giving a Face to the Malware Proxy Service ‘Faceless’

MY TAKE: DigiCert and Oracle partner to extend digital trust and scalable infrastructure globally

Router security in 2021

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Former CIA employee Joshua Schulte was convicted of Vault 7 massive leak

Mobile security advances to stopping device exploits ? not just detecting malicious apps

Podcast Episode 140: passwords are dying. What will replace them?

Life at ForAllSecure: Robert Vamosi, Director of Product Marketing

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

SBOMs: Securing the Software Supply Chain

News Alert: Nuvoton underscores its commitment to 8-bit MCU production sustainability

California Passes First Of Its Kind IoT Cybersecurity Law

California Passes First Of Its Kind IoT Cybersecurity Law

Meet the 2021 SC Awards judges

What is Digital Sovereignty and Why is it Important in a Cloud Environment?

DDoS attacks in Q2 2021

How to Protect Operational Technology (OT) from Cyber Threats

How to Implement Zero Trust

Best Network Monitoring Tools for 2022

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

New Cyberthreats for 2021

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

RSA USA 2017 In Review

History of Computer Hacking and Cybersecurity Threats: From the 50s to Today

Top Cybersecurity Companies for 2021

Top VC Firms in Cybersecurity of 2022

Presidential Cybersecurity and Pelotons

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

Stay Connected