In-brief: An Automotive industry information sharing group has published Best Practices” document, giving individual automakers guidance on improving the cybersecurity of their vehicles.
Search Results for "standards"
Trainwreck: Study Calls for Rethink of Rail Security
The folks over at SCADA Strangelove turned me on to this article from the International Railway Journal that presents the findings of an analysis of the security of industrial control and SCADA systems used to manage railway networks. The conclusion: railways are rife with “faults and vulnerabilities (that will) allow cyber criminals to not only degrade key reliability parameters and bypass safety mechanisms (and) carry out attacks which directly affect rail traffic safety.” The study was conducted by Valentin Gapanovic, the senior vice president of Russian Railways, Efim Rozenberg, the first deputy director general at the Moscow based research firm NIIAS JSC and Kaspersky Lab Deputy Chief Technology Officer Sergey Gordeychik. At issue is not just the systems that are used to manage railway networks, including the movements of trains and critical switching systems that configure tracks. Rather: it is the culture of safety and security in the rail sector which, the study concludes, is still silo’d between physical […]
ENISA Looking for Help with Cybersecurity Policies For Autos
In-brief: The EU’s leading information privacy and security group will be issuing a report on smart car security and is soliciting feedback from auto industry suppliers and experts.
Months Old Flaw Behind the Surveillance Cam Botnet?
In-brief: a network of 25,000 compromised closed circuit cameras has been implicated in a large denial of service attack used for cyber extortion. A known flaw in commonly used DVR technology may be to blame.
Report: Feds Mull Bug Bounty Contest for Medical Devices
In-brief: Following the success of the Hack the Pentagon bug bounty program, officials at the U.S. Department of Health and Human Services are considering launching a similar program aimed at medical devices and other healthcare systems.
