Software Integrity Blog

Archive for the 'Internet of Things' Category

 

The cyber-physical convergence is accelerating—and so are the risks

Cyber-physical attacks are on the rise. As the IoT creeps further into our daily lives, so does the attack surface. What can we do to keep ourselves safe?

Continue Reading...

Posted in Internet of Things | Comments Off on The cyber-physical convergence is accelerating—and so are the risks

 

The IoT: Still feature rich, security poor

How to prevent IoT hacks: Secure your software before you release it. It’s not that hard. So why aren’t more IoT device manufacturers doing it?

Continue Reading...

Posted in Internet of Things | Comments Off on The IoT: Still feature rich, security poor

 

GAO report confirms major gaps in government cybersecurity

The September GAO cybersecurity report stated that there are about 1,000 outstanding recommendations for automotive, military, and IoT security, among others.

Continue Reading...

Posted in Automotive Security, General, Internet of Things | Comments Off on GAO report confirms major gaps in government cybersecurity

 

Better passwords in California won’t help much

California is all done with weak passwords.

Continue Reading...

Posted in General, Internet of Things, Security Standards and Compliance | Comments Off on Better passwords in California won’t help much

 

Make your home both smart and secure | NCSAM at Synopsys

The original version of this article was published in Forbes.

Continue Reading...

Posted in Internet of Things | Comments Off on Make your home both smart and secure | NCSAM at Synopsys

 

The IoT within us: Network-connected medical devices

The Internet of Things is all around us. But it doesn’t stop there—now it’s inside us too. As the era of “connected everything” explodes, so does the use of network-connected medical devices. These interconnected devices, ranging from hospital imaging equipment to implantable pacemakers to infusion pumps, help healthcare providers and patients in a variety of tasks—monitoring vitals, regulating dosages, improving diagnostics, and more. But the convenience of this functionality comes with a trade-off: vulnerability. If attackers gain access to a connected medical device, the potential consequences include severe injury and even death. Consider this:

Continue Reading...

Posted in General, Healthcare Security, Internet of Things, Medical Device Security | Comments Off on The IoT within us: Network-connected medical devices

 

Third-party security, Russian grid meddling, and patch Apache!

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Third-party security party poopers, more Russian meddling in the grid, and patch Apache. Watch this episode below:

Continue Reading...

Posted in General, Internet of Things, Open Source Security | Comments Off on Third-party security, Russian grid meddling, and patch Apache!

 

Ukraine dodges attack, but VPNFilter threat remains

Ukraine had been warned. So it was prepared.

Continue Reading...

Posted in General, Internet of Things | Comments Off on Ukraine dodges attack, but VPNFilter threat remains

 

Vulnerable routers are still out there—and hackers are noticing

Vulnerable routers aren’t news Long ago and far away—in 2014, which is indeed long ago and far away in our cutting-edge world of information technology—security gurus like Dan Geer, Jim Gettys, and Bruce Schneier were issuing urgent warnings about the catastrophic insecurity of routers—those devices in our homes that give us access to the World Wide Web.

Continue Reading...

Posted in Internet of Things, Static Analysis (SAST) | Comments Off on Vulnerable routers are still out there—and hackers are noticing

 

Traffic systems at risk of cyber attack, Cortana and Alexa news, PyRoMineIoT cryptojacker

The cyber security and open source security news that made headlines this week: Traffic systems at risk of cyber attack, Cortana and Alexa news, and the PyRoMineIoT cryptojacker.

Continue Reading...

Posted in Internet of Things, Open Source Security | Comments Off on Traffic systems at risk of cyber attack, Cortana and Alexa news, PyRoMineIoT cryptojacker