In-brief: Verizon said in its latest Data Breach Investigations Report that threats from Internet of Things technologies were more theory than practice in 2014, but that 2015 could see IoT devices play a role in breaches.
Information Security
Is Google’s Rowhammer the Future of IoT Attacks?
In-brief: Infoworld’s Roger Grimes makes the case that Google’s recent Rowhammer exploit may be a sign of things to come as attackers look for common platforms to attack the Internet of Things.
Update: CAs Still Accepting E-mail as Proof of Domain Ownership
In-brief: Carnegie Mellon’s CERT issued a warning that many certificate authorities continue to issue domain certificates with no more proof than the right e-mail address. Updated to include comment from GlobalSign. Paul 3/27/2015
Wanted: Clean Bills on Data Breach and Cyber Intel Sharing | Digital Guardian
In-brief: Two pieces of legislation moving through Congress could address glaring needs for more legal protections for companies that want to share information on cyber attacks. They would also grease the wheels of the federal government’s omnibus surveillance machine. Read this post in its entirety on Digital Guardian’s blog.
Bill in U.S. House would Open Doors to Threat Intel Sharing | Reuters
In-brief: Leaders of the House of Representatives Intelligence Committee introduced the Protecting Cyber Networks Act on Tuesday. The bill would make it easier for companies to share information about attacks with each other and with the government. It also addresses concerns about omnibus spying by U.S. intelligence agencies.
