Post Tagged with: "Government"

NetUSB, IoT and Supply Chain Risk

May 20, 2015 12:290 comments
NetUSB, a common software component for many embedded devices was found to have a serious, exploitable vulnerability. What other problems lurk in the global supply chain?

If you want an object lesson in the dangers that await us on the Internet of Things, check out SEC Consult’s write up on NetUSB, a widely used technology developed by an obscure Taiwanese company that just happens to contain a nasty, remotely exploitable vulnerability. According to this alert, published on Tuesday, NetUSB “suffers from a remotely exploitable kernel stack buffer overflow” that could be used to run malicious code on affected devices. Even worse: the NetUSB component is ubiquitous – found in a long list of devices, from low-end wireless access points and broadband routers for small office and home office deployments to what SEC Consult called “high end devices…released very recently.” Networking devices from 26 vendors, including TP-Link, NetGear and others were found to use the NetUSB technology in their products. The vulnerability discovered by SEC Consult is straight-forward enough. According to their advisory, the NetUSB code does an inadequate […]

Read more ›

FBI Affidavit Alleges Researcher Hacked Planes In Flight

May 17, 2015 15:422 comments
An application for a search warrant filed in April by the FBI alleges that security researcher Chris Roberts tampered with the in flight entertainment system on a flight from Denver to Chicago in April -a charge Roberts denies.

In-brief: Did security researcher Chris Roberts attempt to tamper with in-flight systems during a United Airlines flight from Denver to Chicago in April? An FBI affidavit says “yes,” Roberts says “no way.”  Like this:Like Loading…

Read more ›

Surgical Robots The Latest To Fall To Whitehats

April 29, 2015 10:163 comments
Researchers from the University of California, Santa Cruz, pose with Raven II surgical robots in a photo from 2012. Subsequent work by the researchers uncovered ways the robots could be hacked. (Photo by Carolyn Lagattuta)

In-brief: Researchers from the University of Washington demonstrated attacks against “a slew” of exploitable vulnerabilities in a surgical robot they helped develop. They included attacks that could cause “jerky motion of robot’s arms” or render the surgical robot “motionless” and “almost unusable.” Like this:Like Loading…

Read more ›

Today: Conversation with a Cyber Warrior

April 28, 2015 10:131 comment
Register now to attend our conversation this afternoon with Gen. Rhett Hernandez, the former head of U.S. Cyber Command.

In-brief: Join Security Ledger and Invincea today at 1:00 PM ET for a chat with Gen. Rhett Hernandez, former commander of U.S. Army Cyber Command. Like this:Like Loading…

Read more ›
%d bloggers like this: