In-brief: Both Cisco Systems and Fortinet confirmed that vulnerabilities targeted by tools leaked by the previously unknown group Shadow Brokers were real.
Vulnerabilities
One in Five Vehicle Vulnerabilities are ‘Hair on Fire’ Critical
In-brief: One of every five software vulnerabilities discovered in vehicles in the last three years are rated “critical” and are unlikely to be resolved through after the fact security fixes, according to an analysis by the firm IOActive.
Researcher Warns of Holes In Smart Thermostats
In-brief: A researcher from the firm Trustwave warns that Trane ComfortLink smart thermostats suffer from a string of security woes, including hard coded administrator credentials.
Apple Falls In Line: Offers Bounties Up To $200K For iOS, iCloud
In-brief: Apple announced on Thursday that a new bug bounty program would pay researchers up to $200,000 for information on flaws in its iOS mobile operating system and iCloud service, joining the ranks of technology firms that offer cash for information on software vulnerabilities.
White House Effort Yields Rating System for Software Security
In-brief: A White House-backed effort to develop a system for rating software security is set to launch at this week’s Black Hat briefings with famed hacker Peiter Zatko (aka “Mudge”) at the helm.
