In-brief: the apparent leak of data on owners of CloudPets connected stuffed animals underscores lax security and privacy practices that are common among connected products firms. (Updated with comment from Troy Hunt. PFR 2/28/2017.)
Internet of Things
AT&T: Mirai’s Rise Seen in IoT Vulnerability Scans
In brief: In a new report, Internet provider AT&T said that scans for vulnerable IoT devices spiked in the first half of 2016, months before the Mirai botnet, made up largely of IoT devices, launched denial of service attacks on DYN and other targets.
GlobalSign is Latest CA to Promise PKI at Internet of Things Scale
In-brief: GlobalSign became the latest certificate authority to say that it can now do PKI certificate issuance at massive scale, providing a way to manage identities for the Internet of Things.
New Website Is Clearing House for Medical Device Vulnerabilities
In-brief: A website run by the National Health ISAC will serve as a clearing house for information on security vulnerabilities in medical devices, the first of its kind in the US.
Updated: RSA’s Hottest Startup Signals Online Identity Shakeup
In-brief: The RSA Conference’s most celebrated start-up, UnifyID, signals a fast-approaching revolution in how we do identity online. (Updated with link to UnifyID interview video. – PFR 2/20/2017)
