Authentication, CSO and IoT - Cyber Security Informer

IoT devices have serious security deficiencies due to bad random number generation

CSO Magazine

AUGUST 13, 2021

These are used for authentication, encryption, access control and many other aspects of modern security and they all require cryptographically secure random numbers -- sequences of numbers or symbols that are chosen in a way that's unpredictable by an attacker. Get the latest from CSO by signing up for our newsletters. ]

CSO

CSO IoT Encryption Authentication

Episode 250: Window Snyder of Thistle on Making IoT Security Easy

The Security Ledger

MAY 13, 2023

In this episode of the podcast, I speak with Window Snyder, the founder and CEO of Thistle Technologies about the (many) security challenges facing Internet of Things (IoT) devices and her idea for making things better: Thistle’s platform for secure development and deployment of IoT devices. Read the whole entry. »

IoT

IoT Internet Internet Technology

How Machine Identities Can Imperil Enterprise Security

eSecurity Planet

OCTOBER 18, 2021

Machine identities now outnumber humans in enterprises, according to Nathanael Coffing, co-founder and CSO of Cloudentity. Coffing notes that the recently discovered ThroughTek Kalay vulnerability compromised 83 million IoT devices , which better machine identity management could have prevented. This should come as no surprise.

IoT

IoT Risk Architecture CSO

How to build a zero trust ecosystem

SC Magazine

MAY 19, 2021

Trusted identities are separate authentication and authorization planes that make up the overall trust of a user, their devices, and their access. James Carder, LogRhythm CSO. Examples of identity types are the user, device, applications, data, network traffic and behaviors.

CISO

CISO CSO Architecture IoT

CISA warns of attacks against internet-connected UPS devices

CSO Magazine

MARCH 30, 2022

UPS devices, in recent years, have received IoT upgrades, according to CISA – the idea being to allow users to control them remotely via the internet. However, like many other IoT devices, some UPSs have serious flaws in their security and authentication systems, which attackers have exploited to gain illicit access to them.

Internet

Internet Internet IoT Authentication

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

At the very least, there should have been some form of multi-factor authentication or password vault to protect the [server] account. There is no reason why this functionality should exist for general users of the product, especially without some sort of heightened credentials or multi-factor authentication.

Surveillance

Surveillance IoT Accountability Hacking

Cybersecurity First: #BeCyberSmart at Work and Home

Security Through Education

OCTOBER 27, 2021

In fact, the IoT market was due to reach 31 billion connected devices in 2020 and is estimated to reach 75 billion IoT devices by 2025. Typically, corporate networks are equipped with firewalls, a Chief Security Officer (CSO), and a whole cybersecurity department to keep them safe.

Cybersecurity

Cybersecurity Social Engineering Firewall Engineering

BrandPost: A Guide to Certificate Lifecycle Management: Benefits and Use Cases

CSO Magazine

JANUARY 21, 2022

Cloud adoption, digital transformation initiatives, remote work environments, automation, IoT, and other factors have driven a sharp rise in the volume of digital certificates that organizations must manage.

Digital transformation

Digital transformation IoT Authentication

How to choose a certificate management tool

CSO Magazine

MAY 19, 2022

These secrets are found all over the IT map, including those for servers, for applications, to encrypt your email messages, for authenticating to connect with IoT devices, to allow you to make edits to a piece of code, and for user identities to have access to a particular shared resource.

Encryption

Encryption IoT Authentication Internet

Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More

Security Boulevard

MAY 2, 2025

Enforce multi-factor authentication across all software development environments. This initiative is a commitment to enhance the security posture of our products and, by extension, the broader digital ecosystem, Tenable CSO and Head of Research Bob Huber wrote in a blog. Securely store and transmit credentials.

Cybersecurity

Cybersecurity Software Cyber Risk Risk

BrandPost: The Journey to Zero Trust

CSO Magazine

FEBRUARY 1, 2021

It may involve a more agent-based approach and/or collectively group resources together with authentication and policy being governed at a gateway. It may be difficult to evaluate confidence in public transactions to a web server, from a Zero Trust perspective.

Architecture

Architecture B2B Government Risk

Cybersecurity Snapshot: CISA Warns of Global Spear-Phishing Threat, While OWASP Releases AI Security Resources

Security Boulevard

NOVEMBER 8, 2024

Unraveling the True Security Risks ” (SecurityWeek) “ How deepfakes threaten biometric security controls ” (TechTarget) “ Deepfakes break through as business threat ” (CSO) 3 - Fake update variants dominate list of top malware in Q3 Hackers are doubling down on fake software-update attacks.

Phishing

Phishing Cybersecurity Ransomware Cybercrime

Cybersecurity Snapshot: Apply Zero Trust to Critical Infrastructure’s OT/ICS, CSA Advises, as Five Eyes Spotlight Tech Startups’ Security

Security Boulevard

NOVEMBER 1, 2024

The new guidance explains the benefits that come with strong authentication, while also minimising the friction that some users associate with MFA,” reads an NCSC blog. In other words, what type of MFA method to use depends on people’s roles, how they work, the devices they use, the applications or services they’re accessing and so on.

CISO

CISO Cybersecurity Authentication Government

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

The FaceTime bug definitely proves that your phone can be used as a remote listening device "without any authentication" — Marcus J. Read more: Top IoT Security Solutions of 2021. Lesson learned Kamkar continues to test security integrity as co-founder and CSO of Openpath Security. Maria Markstedter | @Fox0x01.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Key Cybersecurity Trends for 2025. My Predictions

Jane Frankland

JANUARY 12, 2025

Cybersecurity is on the brink of significant transformation as we approach 2025, grappling with escalating complexities driven by advancements in technology, increasing geopolitical tensions, and the rapid adoption of AI and IoT. These frameworks aim to enhance digital trust while promoting technological innovation.

Cybersecurity

Cybersecurity CISO Insurance IoT

Cyber Security Informer

IoT devices have serious security deficiencies due to bad random number generation

Episode 250: Window Snyder of Thistle on Making IoT Security Easy

Trending Sources

How Machine Identities Can Imperil Enterprise Security

How to build a zero trust ecosystem

CISA warns of attacks against internet-connected UPS devices

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Cybersecurity First: #BeCyberSmart at Work and Home

BrandPost: A Guide to Certificate Lifecycle Management: Benefits and Use Cases

How to choose a certificate management tool

Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More

BrandPost: The Journey to Zero Trust

Cybersecurity Snapshot: CISA Warns of Global Spear-Phishing Threat, While OWASP Releases AI Security Resources

Cybersecurity Snapshot: Apply Zero Trust to Critical Infrastructure’s OT/ICS, CSA Advises, as Five Eyes Spotlight Tech Startups’ Security

Top Cybersecurity Accounts to Follow on Twitter

Key Cybersecurity Trends for 2025. My Predictions

Stay Connected