Tag: Policy

Update: Cash for Medical Device Clunkers? Task Force calls for Healthcare Security Overhaul

Update: Cash for Medical Device Clunkers? Task Force calls for Healthcare Security Overhaul

In-brief: the U.S. healthcare sector is in critical condition and needs urgent, coordinated action to protect patient safety and address vulnerabilities in millions of deployed medical devices, a Congressional Task Force has concluded. (Updated with comments from Joshua Corman of Atlantic Council. PFR June 7, 2017)

the U.S. Justice Department has formed a threat analysis team to study potential national security challenges posed by self-driving cars, medical devices and other Internet-connected tools.

Podcast – Smart Vehicle Security: A Report from the Lab

In-brief: In this Security Ledger podcast, Paul speaks with Sameer Dixit of Spirent Security Labs, a leading tester of connected (“smart”) vehicles. Truly secure, connected vehicles may be years away, he says. In the meantime, security flaws and poorly implemented features are a major issue, Dixit says, with many car companies still preferring bolt on security fixes over secure design. 

The U.S. Government is dangerously dependent on old and outdated hardware and software, some dating to the 1960s.

Our Analog Future: Experts Call for Preserving Copper, Pneumatic Systems as Hedge for Cyber Risk

In-brief: The U.S. should invest in equipment and talent to preserve legacy, analog infrastructure such as copper wire telecommunications networks and pneumatic pumps as a hedge against massively disruptive cyber attacks and other interruptions, two researchers with The MITRE Corporation argue in a recent opinion piece. 

Report: Major Upgrade, Investments Needed to Secure Connected Vehicles, Infrastructure

Report: Major Upgrade, Investments Needed to Secure Connected Vehicles, Infrastructure

In-brief: a report by the Cloud Security Alliance calls for a bottom up remake of infrastructure to support connected vehicles and warns of more, serious attacks as connected vehicles begin interacting with each other and with connected – but insecure – infrastructure. 

The payment screen for the Wana Decrypt0r malware which spread widely last week.

Podcast: WannaCry: It’s The Exploits, Stupid and Parsing The Cyber Executive Order

In-brief: We speak  with Sean Dillon of the firm RiskSense, who helped reverse engineer DoublePulsar and EternalBlue, the Windows exploit tools used to help spread the WannaCry ransomware. We also chat with John Dickson of The Denim Group about the impact of President Trump’s Cyber Executive Order.