Threats

Repair shops for televisions and other appliances have largely disappeared in recent decades. A lack of after market parts and tools is one big reason says Kyle Wiens of Repair.org.

A Right to Repair the Internet of Things? Spear Phishing Detection and Nonstop Attacks on DVRs

In-brief: In the latest Security Ledger podcast we talk about pending right to repair laws and their impact on the Internet of Things. Also:  Facebook’s Internet Defense Prize went to a better method for spear phishing detection. We talk to a member of the winning team. And, Johannes Ullrich of The Internet Storm Center joins us to talk about a study he did to measure the frequency of attacks on a common IoT device: digital video recorders.

The FDA approved a patch for implantable devices made by Abbott/St. Jude Medical, more than a year after serious security holes were first reported.

A Year Later: FDA approves Software Fix for Security Flaws in Pacemakers

In-brief: The FDA as approved a software update to software security holes in pacemakers made by Abbott. But doctors and patients will have to weigh the risks of apply the patch. 

Security firms teamed up to take down the WireX botnet, including Dyn - a company hobbled by the Mirai botnet in October.

Mirai Victim Dyn Joins Team to Take Down Android Botnet WireX

In-brief: Managed DNS firm Dyn, a victim of the Mirai botnet, got its revenge: taking part in a coordinated takedown of WireX, a botnet of compromised Android devices, according to an announcement Monday.

Heading to College? Job 1: Lock Down your ‘Directory Information’

Heading to College? Job 1: Lock Down your ‘Directory Information’

In-brief: Colleges in the U.S. give away personally identifying data on millions of students each year as unregulated “directory information.” Job 1 when arriving on campus: opting out and protecting your data.

The USS John S

Hacking Warships, Capitol Hill takes a Swing at IoT Security and why CS Grads don’t get Security

In-brief: on this week’s Security Ledger Podcast, we delve deeper into the question of maritime cyber security, speaking with noted researcher Ruben Santamarta of the firm IOActive about the work he’s done exposing vulnerabilities in the software that runs both commercial and navy vessels. Also: Alan Brill of Kroll joins us to talk about The Internet of Things Cybersecurity Improvement Act. And we talk to Maria Loughlin of the firm Veracode about a new survey that suggests undergraduate computer science majors aren’t receiving adequate instruction in cyber security.