Article and IoT - Cyber Security Informer

DDoS 2.0: IoT Sparks New DDoS Alert

The Hacker News

SEPTEMBER 15, 2023

The Internet of Things (IoT) is transforming efficiency in various sectors like healthcare and logistics but has also introduced new security risks, particularly IoT-driven DDoS attacks. This article explores how these attacks work, why they’re uniquely problematic, and how to mitigate them. What Is IoT?

DDOS

DDOS IoT Healthcare Internet

The UK Bans Default Passwords

Schneier on Security

MAY 2, 2024

The UK is the first country to ban default passwords on IoT devices. On Monday, the United Kingdom became the first country in the world to ban default guessable usernames and passwords from these IoT devices. IoT manufacturers aren’t making two devices, one for California and one for the rest of the US.

Passwords

Passwords IoT Manufacturing Telecommunications

On IoT Devices and Software Liability

Schneier on Security

JANUARY 12, 2024

New law journal article : Smart Device Manufacturer Liability and Redress for Third-Party Cyberattack Victims Abstract: Smart devices are used to facilitate cyberattacks against both their users and third parties.

IoT

IoT Software Manufacturing Internet

Securing the International IoT Supply Chain

Schneier on Security

JULY 1, 2020

Together with Nate Kim (former student) and Trey Herr (Atlantic Council Cyber Statecraft Initiative), I have written a paper on IoT supply chain security. The basic problem we try to solve is: how to you enforce IoT security regulations when most of the stuff is made in other countries? News article. Selling to U.S.

IoT

IoT Manufacturing Cybersecurity

How to deploy software to Linux-based IoT devices at scale

InfoWorld on Security

MARCH 20, 2024

The internet of things (IoT) has transformed the way we interact with the world, connecting a myriad of devices to the internet, from smart thermostats in our homes to industrial sensors in manufacturing plants. In this article, we’ll explore some best practices for deploying software on large fleets of Linux-based IoT devices.

IoT

IoT Software Manufacturing Internet

Patch now! The Mirai IoT botnet is exploiting TP-Link routers

Graham Cluley

MAY 4, 2023

Businesses should patch their TP-Link routers as soon as possible, after the revelation that a legendary IoT botnet is targeting them for recruitment. Read more in my article on the Tripwire State of Security blog.

IoT

IoT DDOS

Cataloging IoT Vulnerabilities

Schneier on Security

FEBRUARY 18, 2019

Recent articles about IoT vulnerabilities describe hacking of construction cranes , supermarket freezers , and electric scooters.

IoT

IoT Hacking

CrowdStrike expands Falcon platform with XDR for IoT assets

CSO Magazine

APRIL 11, 2023

Cybersecurity vendor CrowdStrike has announced the release of new extended detection and response (XDR) capabilities within its Falcon platform to secure extended internet of things (XIoT) assets including IoT, Industrial IoT, OT, and medical devices. To read this article in full, please click here

IoT

IoT Internet Internet Risk

Portnox adds IoT fingerprinting to network access control service

CSO Magazine

OCTOBER 12, 2022

Network security firm Portnox on Wednesday announced it is adding IoT fingerprinting features to the Portnox Cloud NAC-as-a-Service to allow companies to more easily identify and authorize devices on their networks. To read this article in full, please click here

IoT

IoT Network Security

Microsoft includes IoT devices under its Secured-core program

CSO Magazine

JUNE 22, 2022

Addressing security concerns associated with the growing momentum for edge computing , Microsoft is making its Edge Secured-core program for Windows-based IoT devices generally available. While support for Windows 10 IoT is generally available, it is still in preview for Linux. To read this article in full, please click here

IoT

S4x23 Review Part 4: Cybersecurity for Industrial IoT

Trend Micro

MARCH 30, 2023

In this fourth article, I introduce the discussion related to Industrial IoT, that is involved challenges to adopt cybersecurity strategy into modernizing environment.

IoT

IoT Cybersecurity Cyber threats Risk

How to Secure IoT Devices

GlobalSign

APRIL 6, 2023

The Internet of Things (IoT) technology has made our lives more efficient in every aspect, but with this comes risk. In this article, we take a look at the security protocols to help secure IoT devices.

IoT

IoT Internet Internet Technology

Palo Alto Networks looks to shore up healthcare IoT security

CSO Magazine

DECEMBER 5, 2022

Palo Alto Networks today rolled out a new Medical IoT Security offering, designed to provide improved visibility, automated monitoring and more for hitherto vulnerable healthcare IoT frameworks, thanks to machine learning and adherence to zero trust principles. To read this article in full, please click here

Healthcare

Healthcare IoT

oneM2M IoT security specifications granted ITU approval

CSO Magazine

MAY 3, 2023

The ITU Telecommunication Standardization Sector (ITU-T) has approved a set of security specifications for internet of things (IoT) systems. The oneM2M specifications define a common set of IoT service functions to enable secure data exchange and information interoperability across different vertical sectors, service providers, and use cases.

IoT

IoT Telecommunications Technology Internet

Using Hacked IoT Devices to Disrupt the Power Grid

Schneier on Security

SEPTEMBER 11, 2018

This is really interesting research: " BlackIoT: IoT Botnet of High Wattage Devices Can Disrupt the Power Grid ": Abstract : We demonstrate that an Internet of Things (IoT) botnet of high wattage devices-such as air conditioners and heaters-gives a unique ability to adversaries to launch large-scale coordinated attacks on the power grid.

IoT

IoT Hacking Marketing Engineering

New Mirai botnet variant V3G4 targets Linux servers, IoT devices

CSO Magazine

FEBRUARY 17, 2023

A new variant of Mirai — the botnet malware used to launch massive DDoS attacks —has been targeting 13 vulnerabilities in IoT devices connected to Linux servers, according to researchers at Palo Alto Network’s Unit 42 cybersecurity team. To read this article in full, please click here

IoT

IoT DDOS Malware Cybersecurity

BrandPost: Securing IoT: Best Practices for Retailers

CSO Magazine

NOVEMBER 30, 2021

Without a doubt, one of the most game-changing innovations is the Internet of Things (IoT). Industry analyst firm IDC expects there will be over 41 billion connected IoT devices by 2025. In particular, the retail sector is increasingly using IoT technology to personalize the customer experience and digitization.

Retail

Retail IoT Internet Internet

Protecting IoT Connected Devices Makes the Internet Safer

GlobalSign

FEBRUARY 6, 2023

The number of vulnerabilities to IoT devices is increasing. This article explores how protecting IoT devices can be more secure and make the internet safer.

IoT

IoT Internet Internet

IoT, connected devices biggest contributors to expanding application attack surface

CSO Magazine

JANUARY 31, 2023

The growth of the internet of things (IoT) and connected devices are the biggest contributing factors to organizations’ expanding attack surfaces. To read this article in full, please click here

IoT

IoT Marketing Internet Internet

Palo Alto announces new SD-WAN features for IoT security, compliance support

CSO Magazine

MARCH 15, 2023

Cybersecurity vendor Palo Alto has announced new software-defined wide area network (SD-WAN) features in its Prisma SASE solution for IoT device security and to help customers meet industry-specific security compliance requirements. To read this article in full, please click here

IoT

IoT Phishing Software Cybersecurity

NIST gears up for software security and IoT labeling pilot programs

CSO Magazine

DECEMBER 13, 2021

President Biden’s wide-ranging cybersecurity executive order issued last May directs the National Institute of Standards and Technology (NIST) to create pilot labeling programs to educate the public on the security of the internet-of-things (IoT) devices and software products they buy. To read this article in full, please click here

IoT

IoT Software Education Internet

End-to-End IoT Device Security: What You Need to Know

Security Boulevard

MAY 12, 2021

In the course of reading this article, you’ll likely interact with several connected devices. The post End-to-End IoT Device Security: What You Need to Know appeared first on Security Boulevard. And you probably wouldn’t have even given it a second thought if we hadn’t just called it out.

IoT

How a new generation of IoT botnets is amplifying DDoS attacks

CSO Magazine

APRIL 25, 2022

His friend wanted to see how fast Mirai , a novel internet of things (IoT) botnet installer, would take over a Linux-based DVR camera recorder that was popular with medium-size businesses. To read this article in full, please click here

DDOS

DDOS IoT Internet Internet

Digicert Article: The Matter With Smart Devices

BH Consulting

NOVEMBER 11, 2022

Our CEO, Brian Honan weighs in on the frustration of IoT devices that don’t interconnect and how Matter will not only allow products to interoperate with each other seamlessly, but also allow for better security and privacy. Read More › The post Digicert Article: The Matter With Smart Devices appeared first on BH Consulting.

IoT

NIST releases software, IoT, and consumer cybersecurity labeling guidance

CSO Magazine

FEBRUARY 14, 2022

On February 4, the National Institute of Standards and Technology (NIST) issued several documents and updates that spell out software security guidance and recommended consumer labeling practices for software and IoT device devices. To read this article in full, please click here

IoT

IoT Software Cybersecurity Technology

Outdated IoT healthcare devices pose major security threats

CSO Magazine

JANUARY 31, 2022

More than half (53%) of the IoT (internet of things) and internet of medical things (IoMT) devices used in healthcare contain critical cybersecurity risks, according to The State of IoMT Device Security report by Cynerio, which analyzed devices from more than 300 hospitals in the US. To read this article in full, please click here

IoT

IoT Healthcare Internet Internet

Transforming IoT Monitoring Data into Threat Defense

Trend Micro

OCTOBER 7, 2020

In this article, we feature data gathered from our continuous monitoring of C&C servers of botnets such as Mirai and Bashlite. We also share how this data is used to bolster the protection of IoT devices.

IoT

IoT Cyber threats

Default static key in ThingsBoard IoT platform can give attackers admin access

CSO Magazine

APRIL 6, 2023

Developers of ThingsBoard, an open-source platform for managing IoT devices that's used in various industry sectors, have fixed a vulnerability that could allow attackers to escalate their privileges on a server and send requests with administrative privileges. To read this article in full, please click here

IoT

The Dawn of True IoT Security

CyberSecurity Insiders

NOVEMBER 10, 2021

Internet of Things (IoT) devices are now everywhere. To learn more about this topic, read our latest article. Read the Article. The post The Dawn of True IoT Security appeared first on Cybersecurity Insiders. These new publications will serve both corporations and consumers in a positive way.

IoT

IoT Marketing Internet Internet

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks

CSO Magazine

FEBRUARY 10, 2023

These connectivity solutions, also referred to as industrial wireless IoT devices, increase the attack surface of OT networks and can provide remote attackers with a shortcut into previously segmented network segments that contain critical controllers. To read this article in full, please click here

Wireless

Wireless IoT Technology Cybersecurity

The Future of P2P IoT Botnets

Trend Micro

MARCH 10, 2021

We discuss how the involvement of P2P technology in IoT botnets can transform them into stronger threats that organizations and users need to watch out for.

IoT

IoT Technology Cyber threats

GAO warns government agencies: focus on IoT and OT within critical infrastructure

CSO Magazine

DECEMBER 15, 2022

The US Government Accounting Office (GAO) continues to highlight shortcomings in the cybersecurity posture of government entities responsible for the protection of United States infrastructure when it comes to internet of things (IoT) and operational technology (OT) devices and systems. To read this article in full, please click here

IoT

IoT Government Internet Internet

Security by design vital to protecting IoT, smart cities around the world, says CEO of UK NCSC

CSO Magazine

OCTOBER 24, 2022

A secure by design approach is vital to protecting the internet of things (IoT) and smart cities, according to Lindy Cameron, CEO of the UK National Cyber Security Centre (NCSC). Growth of IoT giving rise to increased security threats. To read this article in full, please click here

IoT

IoT Technology Internet Internet

Remote work raises threats from consumer IoT devices

CSO Magazine

FEBRUARY 2, 2021

Security researcher Andrei Costin started to work from home many years ago, and when it comes to security internet of things (IoT) devices, he had his fair share of eyebrow-raising moments. To read this article in full, please click here (Insider Story)

IoT

IoT Firmware Internet Internet

Securing Machine Identities: RPA and IOT

Security Boulevard

JULY 14, 2023

Securing Machine Identities: Safeguarding RPA and IOT in the digital enterpriseMore organizations are digitally transforming by embracing cloud and digital technologies and processes to bring new products and services to market faster. The post Securing Machine Identities: RPA and IOT appeared first on Security Boulevard.

IoT

IoT Digital transformation Marketing Technology

Cryptography Key Management, Authentication and Authorization for IoT

Security Boulevard

DECEMBER 7, 2021

The growth of IoT is not only appealing to academia but also to the industrial sector. Therefore, security and privacy issues for the IoT play an important role. This article will introduce some security methods on IoT devices, such as Cryptography Key [.].

IoT

IoT Authentication Cyber Attacks

Why Healthcare IoT Requires Strong Machine Identity Management

Security Boulevard

MAY 30, 2022

Why Healthcare IoT Requires Strong Machine Identity Management. The healthcare industry has been leveraging IoT devices for years, steadily increasing its use in facilities and patient care. By 2027, the IoT in Healthcare market is expected to reach $290 billion , up from just $60 billion in 2019. brooke.crothers.

Healthcare

Healthcare IoT Manufacturing Risk

How Will 5G Technology Alter IoT Security And How Can We Prepare?

CyberSecurity Insiders

JANUARY 28, 2022

Moreover, predictions made by Gartner indicate that a staggering 59% of organizations plan to support their IoT networks through 5G- which opens up new avenues for cybercriminals to exploit. This article explores the possible ramifications that 5G could have for IoT security, along with some steps that enterprises can take to prepare for it.

IoT

IoT Technology Mobile Software

Securing the Internet of Things through Class-Action Lawsuits

Schneier on Security

FEBRUARY 27, 2020

This law journal article discusses the role of class-action litigation to secure the Internet of Things. Basically, the article postulates that (1) market realities will produce insecure IoT devices, and (2) political failures will leave that industry unregulated. Result: insecure IoT.

Internet

Internet Internet IoT Manufacturing

US Army tells remote workers to switch off their IoT devices (and then withdraws advice)

Graham Cluley

MAY 31, 2021

The US Army appears to have made a strategic withdrawal from advice it issued to remote workers last week about their use of smart IoT devices. Read more in my article on the Bitdefender BOX blog.

IoT

Unfixed vulnerability in popular library puts IoT products at risk

Malwarebytes

MAY 4, 2022

Researchers have found a vulnerability in a popular C standard library in IoT products that could allow attackers to perform DNS poisoning attacks against a target device. The devices like your laptop, phones, tablets and IoT (Internet of Things) devices such as TVs, temperature sensors, and security cameras. Stay safe, everyone!

IoT

IoT DNS Risk Internet

New TCP/IP Vulnerabilities Expose IoT, OT Systems

eSecurity Planet

JANUARY 6, 2021

Forescout Research Labs last month released a 14-page white paper and a 47-page research report detailing 33 vulnerabilities affecting millions of Internet of Things (IoT), Operational Technology (OT), and IT devices. Also Read: 5 Essential IoT Security Best Practices. Consumer Internet of Things (IoT). Affected TCP/IP stacks.

IoT

IoT DNS Internet Internet

The Evolution of IoT Linux Malware Based on MITRE ATT&CK TTPs

Trend Micro

DECEMBER 8, 2021

In our study, we relied on the tactics, techniques, and procedures of MITRE ATT&CK to define the malware capabilities and characteristics of IoT Linux malware. We describe our findings and how IoT malware has been evolving.

IoT

IoT Malware Cyber threats

Spyware in the IoT – the Biggest Privacy Threat This Year

SiteLock

AUGUST 27, 2021

Simply defined, the internet of things (IoT) is a network of Internet-connected objects able to collect and exchange data. In today’s digital-driven world, IoT connects almost everything including homes, offices, and vehicles, allowing users the convenience of activating and operating nearly any device remotely. Think again.

IoT

IoT Spyware VPN Passwords

DDoS 2.0: IoT Sparks New DDoS Alert

The UK Bans Default Passwords

Trending Sources

On IoT Devices and Software Liability

Securing the International IoT Supply Chain

How to deploy software to Linux-based IoT devices at scale

Patch now! The Mirai IoT botnet is exploiting TP-Link routers

Cataloging IoT Vulnerabilities

CrowdStrike expands Falcon platform with XDR for IoT assets

Portnox adds IoT fingerprinting to network access control service

Microsoft includes IoT devices under its Secured-core program

S4x23 Review Part 4: Cybersecurity for Industrial IoT

How to Secure IoT Devices

Palo Alto Networks looks to shore up healthcare IoT security

oneM2M IoT security specifications granted ITU approval

Using Hacked IoT Devices to Disrupt the Power Grid

New Mirai botnet variant V3G4 targets Linux servers, IoT devices

BrandPost: Securing IoT: Best Practices for Retailers

Protecting IoT Connected Devices Makes the Internet Safer

IoT, connected devices biggest contributors to expanding application attack surface

Palo Alto announces new SD-WAN features for IoT security, compliance support

NIST gears up for software security and IoT labeling pilot programs

End-to-End IoT Device Security: What You Need to Know

How a new generation of IoT botnets is amplifying DDoS attacks

Digicert Article: The Matter With Smart Devices

NIST releases software, IoT, and consumer cybersecurity labeling guidance

Outdated IoT healthcare devices pose major security threats

Transforming IoT Monitoring Data into Threat Defense

Default static key in ThingsBoard IoT platform can give attackers admin access

The Dawn of True IoT Security

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks

The Future of P2P IoT Botnets

GAO warns government agencies: focus on IoT and OT within critical infrastructure

Security by design vital to protecting IoT, smart cities around the world, says CEO of UK NCSC

Remote work raises threats from consumer IoT devices

Securing Machine Identities: RPA and IOT

Cryptography Key Management, Authentication and Authorization for IoT

Why Healthcare IoT Requires Strong Machine Identity Management

How Will 5G Technology Alter IoT Security And How Can We Prepare?

Securing the Internet of Things through Class-Action Lawsuits

US Army tells remote workers to switch off their IoT devices (and then withdraws advice)

Unfixed vulnerability in popular library puts IoT products at risk

New TCP/IP Vulnerabilities Expose IoT, OT Systems

The Evolution of IoT Linux Malware Based on MITRE ATT&CK TTPs

Spyware in the IoT – the Biggest Privacy Threat This Year

Stay Connected