application security

The Cloud Security Alliance published a guide for securing IoT deployments.

NIST Guidance takes on Cyber Physical Systems

In-brief: The National Institute for Standards and Technology (NIST) released a draft publication that recommends ways to improve the security of systems during the engineering phase, including so-called cyber physical systems on the Internet of Things.

Two U.S. Senators are requesting information about the government's experience with ransomware - asking whether Uncle Sam has paid ransoms to get data back.

Updated: Vulnerability on 3m Systems Could Spread Ransomware To Schools

In-brief: Researchers at Cisco Systems said that they had identified more than 3 million “at risk” application servers running a vulnerable component that has been linked to ransomware infections. More than 1,600 of those systems have already been compromised, including many school libraries. Updated to add comment from Follett Corp. PFR 4/18/2016

A lab at Underwriters Laboratories, circa 1946. The group is coming under fire for refusing to publish the details of its new cyber security testing standards. (Image courtesy of The Library of Congress.)

UL Charges for Cyber Standards, Draws Scrutiny

In-brief: Product testing firm Underwriters Laboratories drew scrutiny by charging for copies of new standards for connected devices. But security experts say the new UL standards are poised to have a big impact – especially in industries like medicine and critical infrastructure. 

IEEE says that wearable technology could repeat the mistakes of the past when it comes to security and privacy.

IEEE: Security Design Flaws Woven into Wearable Tech

In-brief: The design of wearable technology risks repeating the mistakes of the past, including poor security and privacy features that could pose a risk to consumers, according to a new report by IEEE, an information technology professional organization.  

A test of building management software found that it was often weakly protected and Internet connected.

IBM Research Calls Out Smart Building Risks

In-brief: IBM researchers are warning that building automation systems pose a security risk to companies – and one that few companies take seriously.