SecureWorld News

OCTOBER 13, 2022

consumers could have a set of cybersecurity labeling standards to protect their Internet of Things (IoT) devices as early as spring 2023 if the White House National Security Council has its way. National Institute of Standards and Technology (NIST) issued a whitepaper with recommendations for cybersecurity labeling for consumer IoT products.

IoT 78

IoT Cybersecurity Manufacturing Internet 78

Malwarebytes

AUGUST 23, 2022

However, according to a whitepaper published by CYFIRMA , tens of thousands of systems used by 2,300 organizations across 100 countries have still not applied the security update, and are therefore vulnerable to exploitation. In September 2021 we told you about insecure Hikvision security cameras that were ready to be taken over remotely.

Firmware 83

Firmware VPN Internet Internet 83

Cisco Security

FEBRUARY 17, 2021

Someone on the Internet successfully accessed the computer controlling the chemicals used to treat drinking water for the city and changed the level of sodium hydroxide to 11,100 parts per million (ppm), a significant increase from the normal amount of 100 ppm. How did this industrial workstation become accessible from the Internet?

Cyber Attacks 100

Cyber Attacks IoT Internet Internet 100

Security Affairs

OCTOBER 27, 2022

Thomson Reuters, a multinational media conglomerate, left an open database with sensitive customer and corporate data, including third-party server passwords in plaintext format. This instance left sensitive data open and was already indexed via popular IoT [internet of things] search engines. Original post at [link].

IoT 116

IoT Engineering Passwords Media 116

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Cyber Risk 147

Cyber Risk Risk Financial Services Banking 147

CyberSecurity Insiders

JUNE 18, 2021

The same is also true for machines which speak to other machines as part of the Internet of Things (IoT). The use of passwords, for example, in isolation, no longer meets the needs of a society that relies so heavily on being online – given they are a relatively weak form of authentication.

Mobile 98

Mobile IoT Digital transformation Banking 98

Security Boulevard

JUNE 26, 2023

Lack of access to security features, such as passwords for admins, may result in a data breach where unauthorized persons within the organization may access sensitive data and leak it to malicious insiders. Yahoo also recorded a breach that affected 1 billion accounts in 2013, where names and passwords were stolen.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52