penetration testing

connected vehicles

Podcast – Smart Vehicle Security: A Report from the Lab

In-brief: In this Security Ledger podcast, Paul speaks with Sameer Dixit of Spirent Security Labs, a leading tester of connected (“smart”) vehicles. Truly secure, connected vehicles may be years away, he says. In the meantime, security flaws and poorly implemented features are a major issue, Dixit says, with many car companies still preferring bolt on security fixes over secure design. 

home automate and smart home devices

Targeting Internet of Things: Metasploit Tool Adds Wireless Device Detection

In-brief: The Metasploit Framework has a new extension to test for wireless devices that communicate over radio frequency (RF), Bluetooth and other protocols. 

Survey: Hackers for Hire Find Most Networks Easy Prey

In-brief: A survey of penetration testers by Rapid7 finds most organizations are failing to detect malicious activity on their networks. 

Department of Defense Sets Ground Rules for Hackers

In-brief: The U.S. Department of Defense published guidelines on Monday for independent security researchers to disclose vulnerabilities in DoD’s public facing systems. The program, managed by the firm HackerOne, provides a legal route for hackers to disclose vulnerabilities to the military.

IBM Research Calls Out Smart Building Risks

In-brief: IBM researchers are warning that building automation systems pose a security risk to companies – and one that few companies take seriously.