In-brief: In this Security Ledger podcast, Paul speaks with Sameer Dixit of Spirent Security Labs, a leading tester of connected (“smart”) vehicles. Truly secure, connected vehicles may be years away, he says. In the meantime, security flaws and poorly implemented features are a major issue, Dixit says, with many car companies still preferring bolt on security fixes over secure design.
In-brief: The Metasploit Framework has a new extension to test for wireless devices that communicate over radio frequency (RF), Bluetooth and other protocols.
In-brief: A survey of penetration testers by Rapid7 finds most organizations are failing to detect malicious activity on their networks.
In-brief: The U.S. Department of Defense published guidelines on Monday for independent security researchers to disclose vulnerabilities in DoD’s public facing systems. The program, managed by the firm HackerOne, provides a legal route for hackers to disclose vulnerabilities to the military.
In-brief: IBM researchers are warning that building automation systems pose a security risk to companies – and one that few companies take seriously.