supply chain

Far flung supply chains for hardware and software can pose security risks for tech firms and their customers. (Image courtesy of sourcemap.com)

Software’s Sausage Factory: The Supply Chain

In-brief: Experts warn that supply chain insecurity run broad and deep, threatening the security and integrity of technology dependent organizations.

EFF Warns of Security Culture Gap at Hardware Engineering Firms | TechCrunch

EFF Warns of Security Culture Gap at Hardware Engineering Firms | TechCrunch

In-brief: A senior attorney at the Electronic Frontier Foundation warned about the security knowledge gap facing traditional engineering firms as they pivot to making connected devices. 

Podcast: Privacy Sweeps and securing the IoT Supply Chain

Podcast: Privacy Sweeps and securing the IoT Supply Chain

In-brief: Security Ledger Editor in Chief Paul Roberts speaks with John Dickson, a principal at Denim Group about the recent Internet of Things privacy sweep and about the challenge of securing the Internet of Things supply chain. 

A denial of service attack on the managed DNS firm DYN was due, in part, to attacks from Internet of Things devices running the Mirai malware.

Another Supply Chain Mystery: IP Cameras Ship With Malicious Software

In-brief: The discovery of a malicious link buried in software for a common IP camera sold on Amazon and other online retail outlets is just the latest example of supply chain based threats to connected products.  

CCTV cameras are part of a massive botnet that launched large denial of service attacks last week. It's not the first time that such devices have played a role in attacks.

Supply Chain Wreck: CCTV Firmware Vulnerable

The software used by tens of thousands of digital video recorders (DVRs) used with closed circuit cameras (CCTVs) is vulnerable to being remotely hacked, a researcher has discovered.