Schneier on Security

OCTOBER 3, 2019

In August, CyberITL completed a large-scale survey of software security practices in the IoT environment, by looking at the compiled software. It represents a wide range of either found in the home, enterprise or government deployments. Vendors are Asus, Belkin, DLink, Linksys, Moxa, Tenda, Trendnet, and Ubiquiti.

IoT 233

IoT Firmware Data collection Architecture 233

The Last Watchdog

SEPTEMBER 5, 2023

New government rules coupled with industry standards meant to give formal shape to the Internet of Things (IoT) are rapidly quickening around the globe. After all, government mandates combined with industry standards are the twin towers of public safety. Related: The need for supply chain security This is to be expected.

IoT 220

IoT Government Internet Internet 220

The Last Watchdog

AUGUST 27, 2018

A nascent cottage industry is starting to gel around DDoS botnets-for-hire , comprised of millions of compromised IoT devices. IoT botnets can be hired to execute smaller-scaled DDoS attacks designed to knock out a networked application, rather than a whole website. IoT force multiplier. But that’s not all.

DDOS 255

DDOS IoT Digital transformation Internet 255

The Last Watchdog

FEBRUARY 10, 2025

Related: IoT growing at a 24% clip To get there to fully tap the potential of a hyper-interconnected ecosystem where devices, data, AI and humans converge to benefit humankind cybersecurity must first catch up. Not coincidentally, industry standards groups and government regulators have stepped forward to embrace a vital supporting role.

Internet 130

Internet Internet IoT Manufacturing 130

Adam Shostack

JANUARY 2, 2025

Expanding on the UK Government's The Uk Code of Practice for Consumer IoT Security and how it aligns with Threat Modeling. There's a new report out from the UK Government, The UK Code of Practice for Consumer IoT Security.

IoT 130

IoT Government Technology 130

Tech Republic Security

DECEMBER 11, 2020

The Internet of Things is still in its Wild West phase of development. Standardization is necessary to ensure safety and easier integration.

IoT 218

IoT Government Internet Internet 218

Tech Republic Security

DECEMBER 14, 2020

The bill would increase protection for the billions of connected devices "owned or controlled by the government" in homes and businesses.

IoT 218

IoT Cybersecurity Government 218

Adam Shostack

JANUARY 2, 2025

There's an interesting new draft, Best Practices for IoT Security: What Does That Even Mean? There's an interesting new draft, Best Practices for IoT Security:What Does That Even Mean? by Christopher Bellman and Paul C. van Oorschot. It's by Christopher Bellman and Paul C. van Oorschot.

IoT 130

IoT Manufacturing Internet Internet 130

Adam Shostack

JANUARY 2, 2025

[no description provided] Jean Camp and Yoshi Kohno are organizing an interesting workshop upcoming at the University of Washington on " Best Practices In The IoT :" Our agenda begins with a presentation on the Federal Government initiatives in the IoT.

IoT 130

IoT Government 130

Troy Hunt

JUNE 19, 2021

If you like this sort of content then I'll try and be a bit more organised next time, give some notice and make more of an event out of it.

IoT 358

IoT Government Malware 358

eSecurity Planet

AUGUST 9, 2021

A malicious advertising campaign originating out of Eastern Europe and operating since at least mid-June is targeting Internet of Things (IoT) devices connected to home networks, according to executives with GeoEdge, which offers ad security and quality solutions to online and mobile advertisers. Malvertising is Evolving.

IoT 145

IoT Advertising Identity Theft Mobile 145

eSecurity Planet

NOVEMBER 19, 2021

IoT security is where endpoint detection and response ( EDR ) and enterprise mobility management ( EMM ) meet the challenges of a rapidly expanding edge computing infrastructure. As the enterprise attack surface grows, IoT is yet another attack vector organizations aren’t fully prepared to defend.

IoT 140

IoT Risk Firewall Software 140

Tech Republic Security

MARCH 2, 2020

Without regulation and strong proactive measures, 5G networks remain vulnerable to cyberattacks, and the responsibility falls on businesses and governments.

IoT 218

IoT Cybersecurity Government 218

The Hacker News

JANUARY 8, 2025

government on Tuesday announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for Internet-of-Things (IoT) consumer devices. IoT products can be susceptible to a range of security vulnerabilities," the U.S. Federal Communications Commission (FCC) said.

IoT 124

IoT Internet Internet Government 124

Troy Hunt

MAY 28, 2021

The IoT march forward continues, this time replacing old corroded and shitty-in-every-way halogen bulbs (night time shot of the front of the house to be added to that thread shortly.) References Pwned Passwords, the.NET Foundation and the FBI (this is just awesome from top to bottom ??)

Passwords 348

Passwords IoT Government 348

The Last Watchdog

APRIL 24, 2025

Related: PKI and the IoT cloud One quiet but consequential development now taking root in the financial sector could prove pivotal: the emergence of a dedicated Public Key Infrastructure (PKI) framework, tailored to banks and payment networks, guided by the Accredited Standards Committee X9 (ASC X9), and being rolled out by DigiCert.

Banking 147

Banking Internet Internet IoT 147

Security Boulevard

FEBRUARY 9, 2023

Implementing modern cryptography standards on tiny IoT devices is hard. The post Amazing Fast Crypto for IoT — US NIST Fingers ASCON appeared first on Security Boulevard. They’re underpowered, need to sip battery charge and something like AES is often overkill.

IoT 144

IoT Internet Internet Mobile 144

Security Boulevard

APRIL 30, 2024

The post Brits Ban Default Passwords — and More IoT Stupidity appeared first on Security Boulevard. The UK’s Product Security and Tele­comm­uni­cations Infra­struc­ture Act aims to improve the security of net-connected consumer gear.

IoT 135

IoT Passwords Social Engineering Telecommunications 135

Joseph Steinberg

NOVEMBER 17, 2021

He frequently serves as a cybersecurity expert witness , advises businesses and governments on information security matters, and has amassed millions of readers as a regular columnist for Forbes and Inc. His opinions are also frequently cited in books, law journals, security publications, and general interest periodicals.

Cybersecurity 363

Cybersecurity Artificial Intelligence Government Information Security 363

Security Affairs

SEPTEMBER 18, 2024

Researchers warn of a new IoT botnet called Raptor Train that already compromised over 200,000 devices worldwide. Cybersecurity researchers from Lumen’s Black Lotus Labs discovered a new botnet, named Raptor Train, composed of small office/home office (SOHO) and IoT devices. “This botnet has targeted entities in the U.S.

IoT 138

IoT Wireless DDOS Architecture 138

Troy Hunt

JULY 11, 2021

and I'm sure there'll be an all new stash of cyber-IoT-other things waiting for me at the end of it 🙂 References Finally got my first COVID shot! Next week will start getting back to full steam as the winter holidays end (yeah, it's winter here, I know that's confusing for some people!)

IoT 329

IoT Encryption Government 329

Schneier on Security

NOVEMBER 13, 2020

Data generated by your things — your computer, your phone, your IoT whatever — is written to your pod. It’s exciting to see organizations using Solid to improve the lives of everyday people – through better healthcare, more efficient government services and much more.

Insurance 356

Insurance IoT Healthcare Technology 356

Tech Republic Security

JULY 1, 2020

IoT device makers and the US government need to collaborate with the industry to make sure digital transformation closes security gaps instead of opening new ones.

Digital transformation 196

Digital transformation IoT Government Cybersecurity 196

SecureWorld News

JANUARY 16, 2025

Digital transformation: The integration of IoT, SCADA systems, and advanced analytics has increased operational efficiency but also expanded the attack surface. Leverage data analysis: Data analytics and IoT technologies are revolutionizing the oil and gas sector, enabling better monitoring and threat detection.

Energy and Utilities 109

Energy and Utilities IoT Artificial Intelligence Backups 109

Troy Hunt

OCTOBER 9, 2020

There's a decidedly adult theme running across the topics not by design, but just by pure coincidence between the Grindr incident, a query I got regarding erasing one's adult website browsing history and the IoT male chastity device full of security holes and potential requiring a grinder (not Grindr!) We live in interesting times.

IoT 261

IoT Government 261

Security Boulevard

MARCH 21, 2024

IoT producers must comprehend the relevant rules, consult legal and technological experts and evaluate cybersecurity procedures. The post IoT Consumer Labeling Goes Global – What This Means for Vendors and Consumers appeared first on Security Boulevard.

IoT 125

IoT Technology Cybersecurity Internet 125

CyberSecurity Insiders

JANUARY 28, 2022

Moreover, predictions made by Gartner indicate that a staggering 59% of organizations plan to support their IoT networks through 5G- which opens up new avenues for cybercriminals to exploit. This article explores the possible ramifications that 5G could have for IoT security, along with some steps that enterprises can take to prepare for it.

IoT 131

IoT Technology Mobile Software 131

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

Security Affairs

AUGUST 28, 2023

Researchers spotted an updated version of the KmsdBot botnet that is now targeting Internet of Things (IoT) devices. The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices.

IoT 98

IoT DDOS Architecture Internet 98

Troy Hunt

JUNE 25, 2021

References We had some really nice downtime in a very tranquil environment (tweet thread of the holiday with pics) Spam sucks, even when the spammer doesn't think they're spamming (this one is going straight into the draft post I have on spam still being spam) I've finally upgraded Charlotte from a Mac to a Lenovo running Windows 10!

IoT 61

IoT Government 61

Security Boulevard

SEPTEMBER 11, 2024

The post The SBOM Survival Guide: Why SBOM Compliance is Set to Ignite IoT Security appeared first on Security Boulevard. Once SBOM and IAM provisioning knit seamlessly with policy-driven data encryption and AI-powered monitoring, they will have a far stronger security posture.

IoT 120

IoT Encryption Risk Government 120

Security Affairs

JUNE 6, 2022

Following the attacks of the Killnet Collective, the group responsible for the attacks against major government resources and law enforcement, a new group has been identified called “Cyber Spetsnaz”. The post Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies appeared first on Security Affairs.

Government 145

Government DDOS Cyber Attacks Hacking 145

Schneier on Security

FEBRUARY 21, 2020

Data generated by your things -- your computer, your phone, your IoT whatever -- is written to your pod. Either IoT companies are going to enter into individual data sharing agreements, or they'll all use the same language and protocols. The idea behind Solid is both simple and extraordinarily powerful.

IoT 361

IoT Internet Internet Technology 361

Security Boulevard

FEBRUARY 25, 2022

The post Hackers Wanted—Ukraine Government Calls up its ‘Cybercommunity’ appeared first on Security Boulevard. The Ukranian Defense Ministry is calling up volunteers to join a “cyber force”—to defend against Russian attacks.

Government 138

Government IoT Mobile Risk 138

SecureWorld News

JANUARY 7, 2024

The integration of Governance, Risk, and Compliance (GRC) strategies with emerging technologies like Artificial Intelligence and the Internet of Things are reshaping the corporate risk landscape. Governance Governance refers to the policies, rules, and frameworks that a company needs to follow to meet its business targets.

IoT 103

IoT Technology Artificial Intelligence Government 103

Security Affairs

JUNE 27, 2022

The government of Lithuania announced on Monday that it had been hit by an “intense” cyberattack, likely launched from Moscow, days after the Russian government protested restrictions Vilnius imposed on the rail transit of certain goods to Kaliningrad. which was one of the 1st targets of the new campaign.

Government 138

Government DDOS Media IoT 138

Security Boulevard

APRIL 16, 2025

government funding for the Common Vulnerabilities and Exposures program expires April 16. These are interesting times: U.S. The post MITRE Crisis: CVE Cash Ends TODAY CISA says No Lapse appeared first on Security Boulevard.

Government 115

Government Data privacy Technology IoT 115