Post Tagged with: "Mobile Threats"

EFF: SSL Records Show Superfish Attacks in the Wild

February 26, 2015 11:030 comments
EFF researchers say they have evidence of man in the middle attacks in the wild that use the same technology as the Superfish adware used by Lenovo.

  In-brief: The Electronic Frontier Foundation warned that it has evidence of man-in-the-middle attacks that take advantage of the same encryption-busting technology that Lenovo and Superfish implanted on consumer laptops. Like this:Like Loading…

Read more ›

Datakinesis? IoT Makes The Threat Real

February 17, 2015 09:390 comments
Datakinesis? IoT Makes The Threat Real

In-brief: The Internet of Things will make “datakinesis” – the impact of data attacks on the physical world – common, says Cisco’s Marc Blackmer.  Like this:Like Loading…

Read more ›

BMW Fixes ConnectedDrive Flaw with Over the Air Patch

February 2, 2015 10:141 comment
BMW's ConnectedDrive technology is vulnerable to remote attack. The company said it has already issued a patch to some 2 million affected vehicles.

In-brief: German carmaker BMW used a ‘over the air’ wireless patch to close a security flaw that could have allowed hackers to unlock the doors of Rolls-Royce, Mini and BMW vehicles. Like this:Like Loading…

Read more ›

Android in the Coal Mine: Open Source, Patching and Internet of Things

January 14, 2015 15:060 comments
Android in the Coal Mine: Open Source, Patching and Internet of Things

In brief: Google’s decision not to patch a security hole in versions of Android used by hundreds of millions of consumers is a bad omen for the Internet of Things and will likely push some Android users to alternative versions of the operating system.   Like this:Like Loading…

Read more ›

Wireless Infusion Pump is Test Case for Securing Medical Devices

December 29, 2014 11:210 comments
A NIST document provides a test case for securing connected medical devices, starting with wireless infusion pumps.

A National Institute of Standards and Technology (NIST) reference document is providing some of the clearest guidance from the U.S. government for securing connected medical devices, but may be setting too low a bar for securing wireless communications, according to a security expert. NIST, working with the University of Minnesota’s Technological Leadership Institute, released a draft Use Case document  (PDF) on December 18 to help health care providers “secure their medical devices on an enterprise networks.” However, in the area of communications security, the document suggests the use of WEP (Wired Equivalent Privacy), a legacy wireless security technology that can easily be cracked. NIST released the draft security use case document and is seeking feedback from the public. The drug infusion pump case study is described as the “first of a series” of similar use cases that will focus on medical device security, NIST wrote. The draft document presents a technical description of the security challenges […]

Read more ›
%d bloggers like this: