With no simple way to patch affected systems, the security vulnerability in Trusted Platform Module (TPM) chipsets made by the firm Infineon may be with us for years to come, security experts warn.
Conferences
In Post Password Era, Passwords are the Problem
The standard password has never been less effective or more susceptible to attacks. But some of the U.S.’s leading corporations say they’re also not ready to get rid of it.
Our Analog Future: Election Hacking puts Paper Ballots back in Vogue
Virginia is reverting from electronic to paper ballots while Rhode Island’s legislature this week passed a law to mandate audits comparing paper and electronic voting records.
A Year After Mirai: Insecure Devices are still a Huge Problem
In-brief: A year after Mirai, as many as 100,000 devices, globally, may be running some version of the Mirai malware, while countless others are vulnerable to being enlisted in a Mirai-like attack. Worse: these systems may not be patched for “years,” according to the SANS Internet Storm Center.
A Right to Repair the Internet of Things? Spear Phishing Detection and Nonstop Attacks on DVRs
In-brief: In the latest Security Ledger podcast we talk about pending right to repair laws and their impact on the Internet of Things. Also: Facebook’s Internet Defense Prize went to a better method for spear phishing detection. We talk to a member of the winning team. And, Johannes Ullrich of The Internet Storm Center joins us to talk about a study he did to measure the frequency of attacks on a common IoT device: digital video recorders.
