In-brief: The discovery of a malicious link buried in software for a common IP camera sold on Amazon and other online retail outlets is just the latest example of supply chain based threats to connected products.
Recent Posts
UL Charges for Cyber Standards, Draws Scrutiny
In-brief: Product testing firm Underwriters Laboratories drew scrutiny by charging for copies of new standards for connected devices. But security experts say the new UL standards are poised to have a big impact – especially in industries like medicine and critical infrastructure.
Opinion: The Data Breach Fatigue Fallacy
In-brief: While consumers might be resigned to having their data leaked or stolen, Michael Bruemmer, the Vice President of Experian’s Data Breach Resolution group, argues that companies have plenty to lose from a blasé response to breaches affecting their customers.
Serial To Ethernet Converters are the Huge Critical Infrastructure Risk Nobody Talks About
In-brief: There are more warnings that a common piece of hardware known as Serial-to-Ethernet converters are very vulnerable to remote attacks – and more evidence that the vendors who manufacture them aren’t in a rush to fix the holes.
CERT: Aftermarket Add-On Opens Cars To Life Threatening Hacks
In-brief: Carnegie Mellon CERT warned drivers that a popular aftermarket product for vehicles could leave them open to potentially “life threatening” wireless attacks. Update: added info on recommended remediation. PFR 4/8/2016
