Software Archives

Critical Flaws in VxWorks affect 200 Million Connected Things

July 29, 2019 Paul Roberts

Serious and exploitable security flaws in VxWorks, a commonly used operating system for embedded devices, span 13 years and could leave hundreds of millions* of connected devices vulnerable to remote cyber attacks and hacks. The security firm Armis on Monday published a warning about 11 critical, zero day vulnerabilities in the VxWorks operating system, which is owned and managed by the firm Wind River. The vulnerabilities expose more than 200 million devices and could allow attackers to remotely take control of everything from networked printers and security appliances to industrial and medical devices, according to Ben Seri, the Vice President of Research at Armis. Move over, EternalBlue! At least a couple of the flaws were described as “more serious” than EternalBlue, the Microsoft Windows flaw that powered both the WannaCry and NotPetya malware outbreaks. SCADA and industrial control system devices, healthcare devices like patient monitors and MRI machines, as well […]

Researcher warns DevOps Security is Back to the Future

July 22, 2019 Paul Roberts

The deployment of DevOps tools and platforms at many organizations recalls the bad old days of the 1990s, with lax control of authentication, loose configuration and scant attention to security, experts warn.

Expert: Patch Bluekeep Now or Face WannaCry Scenario

June 13, 2019 Elizabeth Montalbano

The flaw known as BlueKeep could be as dangerous as EternalBlue, the basis of recent malware like WannaCry, according to a report by BitSight.

Episode 147: Forty Year Old GPS Satellites offer a Warning about securing the Internet of Things

May 29, 2019 Paul Roberts

A programming glitch in GPS satellite software grounded planes in China and other countries. But what does it tell us about the security of the Internet of Things? Bill Malik of Trend Micro joins us to discuss.

Podcast Episode 143: Tufin’s IPO with CEO Ruvi Kitov and Capsule8 on securing Linux at Scale

April 23, 2019 Paul Roberts

Tufin (TUFN) became the latest cyber security firm to have an initial public offering. In our first segment, we speak to its co-founder and CEO Reuven Kitov. Also: as more and more applications and workloads shift to the cloud, securing high-performance Linux environments has become a priority. In our second segment, we speak with Kelly Shortridge of the firm Capsule8, a firm that is offering attack protection for product linux environments.

Software

Critical Flaws in VxWorks affect 200 Million Connected Things

Researcher warns DevOps Security is Back to the Future

Expert: Patch Bluekeep Now or Face WannaCry Scenario

Episode 147: Forty Year Old GPS Satellites offer a Warning about securing the Internet of Things

Podcast Episode 143: Tufin’s IPO with CEO Ruvi Kitov and Capsule8 on securing Linux at Scale

Press Release

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

SpyCloud Research Shows that Endpoint Detection and Antivirus Solutions Miss Two-Thirds (66%) of Malware Infections

Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance

Brinker Named Among “10 Most Promising Defense Tech Startups of 2025”

Subscribe to Podcast

Software

Share this:

Share this:

Share this:

Share this:

Share this:

Subscribe to Podcast