Tag Archives: internet of things

Security Never Sleeps- U.S. Security, IoT Vaccines?

U.S. Government Cybersecurity Ranks 16th Out of 18 Industry Sectors

“Very small improvement over last year”

The U.S. government’s cybersecurity standing (both state and federal) is ranked 16th of 18 industry sectors in a new report published by SecurityScorecard, a firm that seeks to help business manage third- and fourth-party risk. This is a very small improvement on the nations position last year, which was 18th out of 18. This still presents a disappointing  and dangerous scenario of public sector readiness to defend systems against cybercrime and cyber espionage. The report was generated by collecting and analyzing subject data through its own data engine, ThreatMarket — which uses 10 categories such as web applications, network security, and DNS health.

Is Your Mobile Carrier Your Weakest Link?

“Mobile security more important than ever”

Now that more online services than ever now offer two-step authentication, i.e., requiring customers to complete a login using their phone or other mobile device after supplying a username and password, many services relying on your mobile devices for that second factor, there has never been more riding on the security of your mobile account. Click the link for a few tips to ensure your mobile device (or, more specifically, your mobile carrier) isn’t the most vulnerable link in your security chain.

This Mirai malware vaccine could protect insecure IoT devices

“Poorly protected IoT devices are the source of many problems”

The hazard of unsophisticated and poorly secured Internet of Things devices came to the front last year with the Mirai DDoS attack that involved nearly a million bots. Many of these devices remain a threat. Researchers have now posed an original solution to the problem: Use the vulnerability of these devices to inject a ‘white worm’ that secures the devices. It is an epidemiological approach that creates immunity with a vaccine by exposing the immune system to a weakened form of the disease.

Enjoy your read? Check out our other content here.

Security Never Sleeps- Playstation Hack, IoT Security

PlayStation Hack Affects Twitter Account

“What happened with PlayStation security”

The official PlayStation Twitter account has been subject to a security breach today, with hacking group OurMine supposedly taking responsibility. The only real evidence thus far comes from the affected account itself, with messages from the social feed allegedly coming from the group posted on the PlayStation Twitter. One also claimed that the PlayStation Network had been compromised, so any users may want to change passwords and other sensitive information.

How to improve IoT security

“Security and privacy risks always increasing”

A recent study from researchers at the technical University of Denmark, Sweden and many more, titled ‘Internet of Hackable Things’, have outlined the new privacy issues that surround the devices. Industries of particular concern include smart devices in healthcare, smart homes, and building operation faculties.

50% of Ex-Employees Can Still Access Corporate Apps

“Businesses drive risk of breaches”

Often times when employees are terminated or move to new roles elsewhere, firms forget to end access to corporate applications. Researchers at OneLogin have polled 500 IT managers to learn how they terminate staff login information and credentials in-house. Initial results trend towards administrators are not doing enough to protect against the potential breach risk from ex-employees.

Enjoy your read? Check out our other content here.

Security Never Sleeps- Scottish Parliament, IoT Regulation

Scottish Parliament targeted in ‘brute force’ cyber attack

“External sources with similar tactics to Westminster incident”

Officials have now stated that the attack on the Scottish Parliament was part of a ‘Brute Force’ cyber operation. Sir Paul Grice confirmed the attack in a message to the MSP’s and staff with statedomain email addresses, urging caution and security practices. “Robust cyber security measures” identified the attack early, and systems “remain fully operational”.

USB Ports Could Be Silently Leaking Your Personal Data To A Malicious Device

“An unfortunately convenient way to steal data”

External hard drives and USB sticks are seen as the most common and often reliable way to securely store and move data. However, an Australian research team has shown that this may not be as secure as we previously thought. Many ports that individuals plug devices in can be leaking personal data remotely, giving criminals access to sensitive information.

Cost of insider threats vs. investment in proactive education and technology

“Which is more important”

Security education is becoming incredibly more important in the increasingly digital age. Technology based defense solutions are incredibly important in preventing attacks and saving organizations significant sums of money.

Who can regulate the IoT?

“Will permeate all of life”

The Internet of Things promises to make life significantly easier, but possibly more complicated at the same time. Security concerns grow everyday over the inter-connectivity of all of these devices. This leads many experts to advocate for organized and proper regulations, with harsh penalties that apply to those who do not comply.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 191

Hack on Italy’s largest bank affects 400,000 customers

“400,000 customers put at risk”

Two security breaches have put hundreds of thousands of sensitive consumer data in jeopardy. Unicredit has stated that personal data and account numbers may have been leaked, also adding that passwords were not leaked, indicating that no unauthorized transactions took place.

Using AI to spot malware patterns

“Protecting organizations has never been more difficult and necessary”

The number of entry points and connected endpoints has only increased, showing that the bad guys are only getting smarter. A new security startup, Cylance, is using artifical intelligence to change the game and counter these criminals.

Majority of Consumers Believe IoT Needs Security Built In

“Global survey say IoT is a ‘shared responsibility'”

Many respondents to a global survey believe that consumers and manufacturers share responsibility to secure networks. Irdeto’s report shows that 90% of respondents think that security should be built in to IoT devices, but are more divided on who is responsible for implementing the systems.

Cloud-Based Email Security Systems From Microsoft And Symantec Miss Thousands Of Unsafe Emails

“Risk assessment on more than 45 million emails”

Email and data security company Mimecast has run an extensive experiment on corporate email vulnerabilities over more than a year. About 24% of the emails were marked as unsafe, with most being spam while some contained dangerous malware. That may seem like a relatively small amount, but given that all of the emails were originally classified as ‘safe’ we see a bigger problem emerge.

Shoddy data-stripping exposes firms to hack attacks

“Research suggests much vulnerability”

Many large firms have made themselves open to attacks because of inadequate data stripping on their websites. Researchers have found that as employees create documents, images, and other files, the data is uploaded to the companies website and not properly maintained.

Enjoy your read? Check out our other content here.