supply chain Archives | Page 2 of 16 | The Security Ledger

supply chain

A hidden, backdoor account affects a line of VoIP gateways made by DblTek, researchers from TrustWave found. (Image courtesy of DblTek.)

<img src="https://cdn.securityledger.com/wp-content/uploads/2017/03/GoIP-216x160.jpg" alt="A hidden, backdoor account affects a line of VoIP gateways made by DblTek, researchers from TrustWave found. (Image courtesy of DblTek.)" class="Thumbnail thumbnail loop wp-image-378924 " width="216" height="160">

Dbl Trouble: Fix Falls Short for Backdoor in China-Made Devices

March 3, 2017 by Paul

In-brief: A hidden, backdoor account affects a line of VoIP gateways made by DblTek, researchers from TrustWave found. The manufacturers fix, however, may not solve the problem.

Continue Reading →

An article in Quartz finds a common theme in stories about the massive denial of service attacks from IoT botnets and exploding hover boards: a sketchy global supply chain.

<img src="https://cdn.securityledger.com/wp-content/uploads/2015/05/Fotolia_76235915_S-216x160.jpg" alt="An article in Quartz finds a common theme in stories about the massive denial of service attacks from IoT botnets and exploding hover boards: a sketchy global supply chain." class="Thumbnail thumbnail loop wp-image-81023 " width="216" height="160" srcset="https://cdn.securityledger.com/wp-content/uploads/2015/05/Fotolia_76235915_S-216x160.jpg 216w, https://cdn.securityledger.com/wp-content/uploads/2015/05/Fotolia_76235915_S-100x75.jpg 100w, https://cdn.securityledger.com/wp-content/uploads/2015/05/Fotolia_76235915_S-60x45.jpg 60w" sizes="(max-width: 216px) 100vw, 216px">

Combustible Hoverboards to Hackable Cameras – its the Supply Chain, Stupid | Quartz

November 2, 2016 by Paul

In-brief: An article in Quartz finds a common theme in stories about the massive denial of service attacks from IoT botnets and exploding hover boards: a sketchy global supply chain.

Continue Reading →

Cyber criminals are rushing to compromise weakly secured devices like cameras and digital video recorders. (Image courtesy of OKhistory.org)

<img src="https://cdn.securityledger.com/wp-content/uploads/2016/10/21412.M562.15-Land-Run-Photo-216x160.jpg" alt="Cyber criminals are rushing to compromise weakly secured devices like cameras and digital video recorders. (Image courtesy of OKhistory.org)" class="Thumbnail thumbnail loop wp-image-346774 " width="216" height="160">

Land Rush: Race is On To Hack Vulnerable IoT Devices

October 17, 2016 by Paul

In-brief:Cyber criminal groups are racing to gain control over a population of insecure “Internet of Things” devices, with new malware families targeting embedded devices appearing at a steady rate and a noticeable uptick in so-called “brute force” password guessing attacks against embedded systems.

Continue Reading →

Hardware and software from the Chinese supplier XiongMai Technologies were exploited to create the massive Mirai botnet, according to an analysis by the firm Flashpoint. (Image courtesy of Shodan)

<img src="https://cdn.securityledger.com/wp-content/uploads/2016/10/Shodan_XiongMai-216x160.png" alt="Hardware and software from the Chinese supplier XiongMai Technologies were exploited to create the massive Mirai botnet, according to an analysis by the firm Flashpoint. (Image courtesy of Shodan)" class="Thumbnail thumbnail loop wp-image-343081 " width="216" height="160">

Shoddy Supply Chain Lurks Behind Mirai Botnet

October 10, 2016 by Paul

In-brief: A common, China-based supplier of management software is the common thread that ties together the myriad digital video recorders, IP-based cameras and other devices that make up the Mirai botnet, according to analysis by the firm Flashpoint.

Continue Reading →

RSA said it 2015 that it detected an attempt to compromise a Point of Sale vendor, raising concerns about supply chain based attacks. The PCI Council is now requiring more supply chain controls for POS systems.

<img src="https://cdn.securityledger.com/wp-content/uploads/2014/01/pos-system-216x160.jpg" alt="RSA said it 2015 that it detected an attempt to compromise a Point of Sale vendor, raising concerns about supply chain based attacks. The PCI Council is now requiring more supply chain controls for POS systems." class="Thumbnail thumbnail loop wp-image-5821 " width="216" height="160" srcset="https://cdn.securityledger.com/wp-content/uploads/2014/01/pos-system-216x160.jpg 216w, https://cdn.securityledger.com/wp-content/uploads/2014/01/pos-system-100x75.jpg 100w, https://cdn.securityledger.com/wp-content/uploads/2014/01/pos-system-60x45.jpg 60w" sizes="(max-width: 216px) 100vw, 216px">

PCI Updates Security Guidance with Focus on Firmware

September 12, 2016 by Paul

In-brief: The Payment Card Industry Security Standards Council (PCI Council) is raising the bar for the security of point of sale systems, with a big focus on the software (or “firmware”) that runs those systems.

Continue Reading →

Videos

Threat Hunting in the Enterprise
How Machine Learning Supplements Security Workforce
Webinar: Deconstructing the Top IoT Attacks of 2016
Security Ledger Live with Ron Gula of Gula Technology Adventures
Conversation with a CISO: Alan Daines of Dell