2024 and IoT - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Continuing our look back at 2024, part two of Last Watchdogs year-ender roundtable turns its focus to emerging threats vs. evolving defense tactics. Sundaresan Bindu Sundaresan , Cybersecurity Director, LevelBlue In 2025, cybercriminals will exploit supply chain vulnerabilities, ransomware, IoT botnets, and AI-driven phishing.

Cyber threats

Cyber threats CISO IoT Phishing

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

Tech Republic Security

OCTOBER 16, 2024

Zscaler ThreatLabz report reveals a 2024 surge in mobile, IoT, and OT cyberattacks, highlighting key trends and the need for zero trust security.

IoT

IoT Mobile Cyber threats Internet

IT threat evolution in Q3 2024. Non-mobile statistics

SecureList

NOVEMBER 29, 2024

IT threat evolution in Q3 2024 IT threat evolution in Q3 2024. Non-mobile statistics IT threat evolution in Q3 2024. Quarterly figures In Q3 2024: Kaspersky solutions successfully blocked more than 652 million cyberattacks originating from various online resources. 2 China 0.95 3 Libya 0.68 4 South Korea 0.66

Mobile

Mobile Adware Ransomware Malware

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

4 IoT Trends U.K. Businesses Should Watch in 2024

Tech Republic Security

MAY 2, 2024

TechRepublic identified the top four trends emerging in IoT that businesses in the U.K. should be aware of.

IoT

IoT Artificial Intelligence Internet Internet

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

Trend Micro

JANUARY 16, 2025

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

IoT

IoT DDOS Wireless Cyber threats

PTZOptics cameras zero-days actively exploited in the wild

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Firmware

Firmware Manufacturing IoT Healthcare

Expert Insights on IoT Security Challenges in 2024

Security Boulevard

APRIL 5, 2024

Advancements in Internet of Things (IoT) technologies are paving the way for a smarter, more interconnected future. According to Global Data, the global IoT market could be worth $1.1 trillion in 2024, potentially growing at a 13% compound annual growth rate (CAGR).

IoT

IoT Marketing Internet Internet

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

JANUARY 4, 2025

In September 2024, cybersecurity researchers from Lumens Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. In September 2024, US authorities disrupted the “Raptor Train” botnet Now the U.S.

Cybersecurity

Cybersecurity IoT Hacking Technology

Kaspersky Security Bulletin 2024. Statistics

SecureList

DECEMBER 4, 2024

The statistics in this report cover the period from November 2023 through October 2024. Fill the form below to download the “Kaspersky Security Bulletin 2024. Millions of Kaspersky users around the globe assist us in collecting information about malicious activity. Stopped miners from infecting 999,794 unique users.

Mobile

Mobile Malware Banking Ransomware

Contiki-NG IoT OS Patches Critical Vulnerabilities

Penetration Testing

NOVEMBER 28, 2024

Researchers have identified and addressed three critical vulnerabilities in Contiki-NG, a popular open-source operating system for Internet of Things (IoT) devices. These vulnerabilities could allow attackers to crash devices or... The post Contiki-NG IoT OS Patches Critical Vulnerabilities appeared first on Cybersecurity News.

IoT

IoT Internet Internet Cybersecurity

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

The Last Watchdog

DECEMBER 13, 2023

Related: Why IoT standards matter Digital Trust refers to the level of confidence both businesses and consumers hold in digital products and services – not just that they are suitably reliable, but also that they are as private and secure as they need to be. A we turn the corner into 2024, Digital Trust is in sight.

Encryption

Encryption Technology CISO IoT

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

The Last Watchdog

MAY 13, 2024

Secretary of State Antony Blinken opened RSA Conference 2024 last week issuing a clarion call for the cybersecurity community to defend national security, nurture economic prosperity and reinforce democratic values. Big security services role The second grouping of vendors I met with at RSAC 2024 were more about a security services component.

Artificial Intelligence

Artificial Intelligence Technology Accountability DNS

Understanding Global IoT Security Regulations

Security Boulevard

JUNE 29, 2021

The IoT is maturing rapidly, and surveys show that global IoT spending will achieve a combined annual growth rate (CAGR) of 11.3% over the 2020-2024 forecast period. The huge potential of IoT. The huge potential of IoT. The post Understanding Global IoT Security Regulations appeared first on Security Boulevard.

IoT

IoT Retail Manufacturing Internet

Data Security Trends: 2024 Report Analysis

Thales Cloud Protection & Licensing

MARCH 24, 2024

Data Security Trends: 2024 Report Analysis madhav Mon, 03/25/2024 - 05:08 Amid ongoing economic uncertainty and a progressively complex threat landscape, businesses are trying to navigate increasingly stringent regulatory requirements while bolstering their security posture. Download the full Thales 2024 Thales Data Threat Report now.

Artificial Intelligence

Artificial Intelligence IoT Technology Threat Reports

New Mirai botnet variant Murdoc Botnet targets AVTECH IP cameras and Huawei HG532 routers

Security Affairs

JANUARY 21, 2025

The botnet has been active since at least July 2024, the experts discovered that over 1300 IPs werefound active on this campaign. This botnet also uses some existing exploits ( CVE-2024-7029 , CVE-2017-17215 ) to download the next-stage payloads.” Most of the infected systems are in Malaysia, Thailand, Mexico, and Indonesia.

IoT

IoT Malware Hacking Cybercrime

RSAC 2024: IoT Security Questions (and Answers)

Security Boulevard

MAY 7, 2024

The 2024 RSA Conference is underway, and Viakoo is out in force. During the conference as we meet with customers, prospects, media, and analysts I will try to cherry pick some of the more interesting questions related to IoT Security. The post RSAC 2024: IoT Security Questions (and Answers) appeared first on Security Boulevard.

IoT

IoT Media Risk Government

CVE-2024-38373: FreeRTOS-Plus-TCP Flaw Exposes Millions of IoT Devices to Critical Risk

Penetration Testing

JUNE 26, 2024

A critical vulnerability (CVE-2024-38373) has been discovered in FreeRTOS-Plus-TCP, a popular TCP/IP stack widely used in Internet of Things (IoT) devices and embedded systems. could... The post CVE-2024-38373: FreeRTOS-Plus-TCP Flaw Exposes Millions of IoT Devices to Critical Risk appeared first on Cybersecurity News.

IoT

IoT Risk Internet Internet

A Robot the Size of the World

Schneier on Security

DECEMBER 15, 2023

This was the Internet of Things (IoT). In 2024, we’re going to start connecting those LLMs and other AI systems to both sensors and actuators. And they will increasingly control our environment, through IoT devices and beyond. (And It had actuators: Drones, autonomous cars. This essay previously appeared in Wired.

Internet

Internet Internet IoT Banking

Microsoft Patch Tuesday for July 2024 fixed 2 actively exploited zero-days

Security Affairs

JULY 10, 2024

Microsoft Patch Tuesday security updates for July 2024 addressed 139 flaws, including two actively exploited zero-days. The two flaws actively exploited in the wild are: CVE-2024-38080 Windows Hyper-V Elevation of Privilege Vulnerability Important 7.8 Yes No Info CVE-2024-35264.NET

IoT

IoT Hacking Information Security

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

SecureWorld News

JANUARY 16, 2025

Digital transformation: The integration of IoT, SCADA systems, and advanced analytics has increased operational efficiency but also expanded the attack surface. Leverage data analysis: Data analytics and IoT technologies are revolutionizing the oil and gas sector, enabling better monitoring and threat detection.

Energy and Utilities

Energy and Utilities IoT Artificial Intelligence Backups

CVE-2024-7490: Urgent Warning for IoT Devices Using Microchip ASF, No Patch Available

Penetration Testing

SEPTEMBER 22, 2024

This vulnerability, designated CVE-2024-7490, exposes IoT devices using... The post CVE-2024-7490: Urgent Warning for IoT Devices Using Microchip ASF, No Patch Available appeared first on Cybersecurity News.

IoT

IoT Software Cybersecurity

Survey on 2024 IoT Security Crisis

Security Boulevard

FEBRUARY 27, 2024

Organizations today are urgently in need of addressing their IoT security situation; it’s the fastest growing part of the attack surface overall and the one security area most likely to be made worse by cyber threats driven by AI […] The post Survey on 2024 IoT Security Crisis appeared first on Viakoo, Inc.

IoT

IoT Cyber threats Risk Government

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Krebs on Security

AUGUST 27, 2024

26, Versa urged customers to deploy a patch for the vulnerability ( CVE-2024-39717 ), which the company said is fixed in Versa Director 22.1.4 ISP on June 12, 2024. In January 2024, the U.S. In a security advisory published Aug. Versa said the weakness allows attackers to upload a file of their choosing to vulnerable systems.

Internet

Internet Internet Technology Engineering

CVE-2024-29868 in Popular IoT Toolbox StreamPipes Opens Door to Account Takeovers

Penetration Testing

JUNE 24, 2024

The flaw, designated CVE-2024-29868, stems from the... The post CVE-2024-29868 in Popular IoT Toolbox StreamPipes Opens Door to Account Takeovers appeared first on Cybersecurity News.

IoT

IoT Accountability Internet Internet

Planet WGS-804HPT Industrial Switch flaws could be chained to achieve remote code execution

Security Affairs

JANUARY 19, 2025

The Planet WGS-804HPT industrial switch is used in building and home automation networks to provide connectivity of Internet of things (IoT) devices, IP surveillance cameras, and wireless LAN network applications. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,IOT)

Firmware

Firmware IoT Wireless Surveillance

Microsoft Patch Tuesday security updates for September 2024 addressed four actively exploited zero-days

Security Affairs

SEPTEMBER 11, 2024

Microsoft Patch Tuesday security updates for September 2024 addressed 79 flaws, including four actively exploited zero-day flaws. ” The four actively exploited zero-day vulnerabilities are: CVE-2024-38014 – Windows Installer Elevation of Privilege Vulnerability. However, we at the ZDI think that number should be five.”

Social Engineering

Social Engineering IoT Engineering Authentication

IoT Testing: Best Practices And Challenges in 2024

Security Boulevard

FEBRUARY 8, 2024

According to Transforma Insights, the wide form of Internet of Things (IoT) devices in use globally is expected to nearly double from 15.1 The post IoT Testing: Best Practices And Challenges in 2024 appeared first on Security Boulevard. billion to 29 billion in 2030.

IoT

IoT Internet Internet

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Security Affairs

JULY 11, 2024

Multiple threat actors exploit a recently disclosed security PHP flaw CVE-2024-4577 to deliver multiple malware families. The flaw CVE-2024-4577 (CVSS score: 9.8) Greynoise researchers also reported malicious attempts of exploitation of the CVE-2024-4577. “As ” reported Akamai. . ” reported Akamai.

Malware

Malware DDOS Internet Internet

Hacked Robot Vacuums Hurl Racial Slurs, Show IoT Devices Risks

SecureWorld News

OCTOBER 16, 2024

The breaches underscore the growing threat of vulnerabilities in IoT (Internet of Things) devices. A January 2024 blog on ToolingIdeas.com provides a comprehensive rundown of the risks of IoT devices, particularly robot vacuums. The video is unnerving.

IoT

IoT Hacking Risk Internet

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

The Last Watchdog

FEBRUARY 21, 2024

Related: How decentralized IoT boosts decarbonization Yet, more so than ever, infusing trustworthiness into modern-day digital services has become mission critical for most businesses. If you factor in where we are in the world today with things like IoT, quantum computing and generative AI, we could be heading for a huge trust crisis.”

Energy and Utilities

Energy and Utilities IoT Manufacturing Healthcare

Securing Public Sector Against IoT Malware in 2024

Security Boulevard

JANUARY 11, 2024

The rapid proliferation of the Internet of Things (IoT) represents vast opportunities for the public sector. However, as IoT innovation and adoption grows, so do the associated security risks. However, as IoT innovation and adoption grows, so do the associated security risks.

IoT

IoT Malware Education Government

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs

FEBRUARY 8, 2024

26 key cyber security stats for 2024 that every user should know, from rising cyber crime rates to the impact of AI technolog y. Privacy Compliance: By 2024, 40% of privacy tools will rely on AI, highlighting its expanding role in ensuring data privacy and meeting regulations. RaaS usage is expected to increase by 25% in 2024.

Social Engineering

Social Engineering Cyber Attacks Cyber Insurance IoT

IT threat evolution in Q2 2024. Non-mobile statistics

SecureList

SEPTEMBER 3, 2024

Quarterly figures In Q2 2024: Kaspersky solutions blocked over 664 million attacks from various internet sources. Ransomware Quarterly trends and highlights Law enforcement successes In April 2024, a criminal who developed a packer that was allegedly used by the Conti and Lockbit groups to evade antivirus detection was arrested in Kyiv.

Mobile

Mobile Antivirus Adware Ransomware

Connected contraptions cause conniption for 2024

Malwarebytes

DECEMBER 31, 2024

This holiday season, lets do better than the silliest, most needless IoT devices, and lets connect to what matters instead. There was a device that seemingly everyone agreed had no reason to connect to the internet, andwould you look at thatit led to major consequences. In reality, the consequences were to the truth.

Internet

Internet Internet Mobile DDOS

IT threat evolution in Q1 2024. Non-mobile statistics

SecureList

JUNE 3, 2024

IT threat evolution Q1 2024 IT threat evolution Q1 2024. Mobile statistics IT threat evolution Q1 2024. Quarterly figures In Q1 2024: Kaspersky solutions blocked more than 658 million attacks from various online resources. 2 Venezuela 1.91 3 Kazakhstan 1.88 4 Kyrgyzstan 1.80 5 Belarus 1.69 6 Uzbekistan 1.55

Mobile

Mobile Ransomware Adware IoT

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom. reads the report published by Black Lotus Labs.

Architecture

Architecture Internet Internet Malware

RSAC 2024 Day 2: IoT Security Questions (and Answers)

Security Boulevard

MAY 8, 2024

RSA Conference delivers in terms of interesting dialogues with other cybersecurity professionals, and this year while there is not much on the conference agenda related to IoT security there is a lot of discussion about it. The post RSAC 2024 Day 2: IoT Security Questions (and Answers) appeared first on Security Boulevard.

IoT

IoT Cybersecurity Firmware Risk

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Persistent exploitation of legacy systems One of the most alarming aspects of Ghost ransomware is its focus on legacy IoT and OT environments. Stolen credentials remain the top breach factor, responsible for 24% of incidents in 2024.

Ransomware

Ransomware IoT Encryption Social Engineering

Exploits and vulnerabilities in Q2 2024

SecureList

AUGUST 21, 2024

Q2 2024 was eventful in terms of new interesting vulnerabilities and exploitation techniques for applications and operating systems. Attacks through vulnerable drivers have become prevalent as a general means of privilege escalation in the operating system.

Software

Software Penetration Testing Risk VPN

EU to Force IoT, Wireless Device Makers to Improve Security

eSecurity Planet

NOVEMBER 1, 2021

The European Union is poised to place more demands on manufacturers to design greater security into their wireless and Internet of Things (IoT) devices. has made some strides on IoT security at the federal level; it remains to be seen if the EU initiative will spur the U.S. IoT market growth. IoT Security Neglected.

Wireless

Wireless IoT Manufacturing Mobile

Top Cyber Asset Attack Surface Management (CAASM) Tools for 2024

Centraleyes

DECEMBER 26, 2024

As we move from 2024 to 2025, the importance of CAASM tools has never been greater, and understanding the top options available is crucial for any business aiming to bolster its cybersecurity posture. Lets explore some of the top CAASM vendors and tools for 2024.

Risk

Risk Internet Internet Cybersecurity

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

Security Affairs

DECEMBER 26, 2024

In November 2024, the Akamai Security Intelligence Research Team (SIRT) observed increased activity targeting the URI /cgi-bin/cgi_main.cgi , linked to a Mirai-based malware campaign exploiting an unassigned RCE vulnerability in DVR devices, including DigiEver DS-2105 Pro. TheMiraivariant incorporates ChaCha20 and XOR decryption algorithms.

Manufacturing

Manufacturing Malware Firmware IoT

Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device

The Hacker News

JANUARY 21, 2025

The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. Web infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 The activity originated

DDOS

DDOS IoT Internet Internet

Hacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet

Penetration Testing

AUGUST 25, 2024

Security researcher Jacob Masse has exposed a critical vulnerability within the Mirai botnet, the infamous malware that has plagued the Internet of Things (IoT) and server landscapes since 2016.

Hacking

Hacking IoT Internet Internet

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024

Webinars

Trending Sources

IT threat evolution in Q3 2024. Non-mobile statistics

Webinars

4 IoT Trends U.K. Businesses Should Watch in 2024

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

PTZOptics cameras zero-days actively exploited in the wild

Expert Insights on IoT Security Challenges in 2024

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Kaspersky Security Bulletin 2024. Statistics

Contiki-NG IoT OS Patches Critical Vulnerabilities

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

Understanding Global IoT Security Regulations

Data Security Trends: 2024 Report Analysis

New Mirai botnet variant Murdoc Botnet targets AVTECH IP cameras and Huawei HG532 routers

RSAC 2024: IoT Security Questions (and Answers)

CVE-2024-38373: FreeRTOS-Plus-TCP Flaw Exposes Millions of IoT Devices to Critical Risk

A Robot the Size of the World

Microsoft Patch Tuesday for July 2024 fixed 2 actively exploited zero-days

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

CVE-2024-7490: Urgent Warning for IoT Devices Using Microchip ASF, No Patch Available

Survey on 2024 IoT Security Crisis

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

CVE-2024-29868 in Popular IoT Toolbox StreamPipes Opens Door to Account Takeovers

Planet WGS-804HPT Industrial Switch flaws could be chained to achieve remote code execution

Microsoft Patch Tuesday security updates for September 2024 addressed four actively exploited zero-days

IoT Testing: Best Practices And Challenges in 2024

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Hacked Robot Vacuums Hurl Racial Slurs, Show IoT Devices Risks

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

Securing Public Sector Against IoT Malware in 2024

26 Cyber Security Stats Every User Should Be Aware Of in 2024

IT threat evolution in Q2 2024. Non-mobile statistics

Connected contraptions cause conniption for 2024

IT threat evolution in Q1 2024. Non-mobile statistics

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

RSAC 2024 Day 2: IoT Security Questions (and Answers)

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Exploits and vulnerabilities in Q2 2024

EU to Force IoT, Wireless Device Makers to Improve Security

Top Cyber Asset Attack Surface Management (CAASM) Tools for 2024

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device

Hacking the Hacker: Researcher Found Critical Flaw (CVE-2024-45163) in Mirai Botnet

Stay Connected