Expert insights. Personalized for you.
More Devices Affected by 'Ripple20' Vulnerabilities Federal regulators have issued another round of security alerts about vulnerabilities in medical device products from several manufacturers, including an update on those affected by so-called "Ripple-20" flaws earlier identified in the Treck TCP/IP stack. MORE
Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center. I … The post Cybersecurity in manufacturing appeared first on OpenText Blogs. MORE
A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards MORE
Visser Precision has confirmed a security incident likely caused by the data-stealing DoppelPaymer ransomware MORE
Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. . IoT Podcasts DDoS IoT IoT Consumer Device IoT Device IoT security Threatpost podcast MORE
manufacturing company is the latest organization to be targeted with the LokiBot trojan - although this most recent campaign harbored some bizarre red flags. Malware Web Security info-stealer IOC IP address LokiBot malicious attachment malicious email malspam malware manufacturing company Spam TrojanA large U.S. MORE
Senators sent a letter to the Federal Trade Commission asking the agency to investigate the privacy policies and practices of smart TV manufacturers. Behavioral Advertising Information Security Advertisement Consumer Protection Federal Trade Commission Internet of Things SenateOn July 12, 2018, two U.S. MORE
But there are no regulations around how long manufacturers must provide security updates, which could mean a smart device could become a risk Survey Shows Long-Term Software Support Varies Widely If you've managed to equip your home with smart devices and appliances that work properly, you probably think you're all set. MORE
Manufacturers need to change their approach to securing internet of things devices, says Aloysius Cheang, executive vice president for Asia Pacific at the Center for Strategic Cyberspace + Security Science, a U.K.-based based think tank, who describes what needs to be done MORE
More 'Defects' Found in Software Engineering and Cybersecurity Processes Britain's intelligence establishment warns that Chinese networking giant Huawei's "software engineering and cybersecurity processes" continue to be beset by unresolved "defects" and that improvements promised by the manufacturer have yet to be seen MORE
As automobile manufacturers and others rush to shift to production of ventilators and other medical equipment and supplies to help fight the COVID-19 pandemic, they must take steps to ensure security, privacy and safety risks are addressed, says technology attorney Steven Teppler MORE
Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. Security experts from TrapX reported that some IoT devices running Windows 7 have been infected with a piece of malware, is it a supply chain attack? The experts reported that several IoT devices at some major manufacturers have been infected with a cryptocurrency miner in October 2019. MORE
As manufacturers - including companies such as automakers that do not typically produce healthcare devices - race to help fill medical equipment shortages during the COVID-19 crisis, steps must be taken to ensure adequate security testing, says Fairuz Rafique of cybersecurity services firm EmberSec MORE
On February 23, 2016, the Federal Trade Commission announced that it reached a settlement with Taiwanese-based network hardware manufacturer ASUSTeK Computer, Inc. ASUS”), to resolve claims that the company engaged in unfair and deceptive security practices in connection with developing network routers and cloud storage products sold to consumers in the U.S. MORE
Vendors Issued Security Updates to Fix Severe Flaws Several Months Ago Patch or perish redux: Hackers are unleashing automated attacks to find and exploit known flaws in SSL VPNs manufactured by Fortinet and Pulse Secure to steal passwords. The exploits come despite both vendors having released patches several months ago - Pulse Secure in April, Fortinet in May MORE
The VPNFilter Internet of Things botnet that Cisco Talos researchers recently discovered is the latest cyber security red flag for all IoT device manufacturers – and it’s an enormous flag. Internet of things Data security Cyber security Cyber attacks MORE
In each industry and even the whole economics system, digitization and intelligentization have become buzz-words, and it will help the manufacture industry upgrade its production, management and efficiency to the next level. With strong Consulting and system integration capability, Perficient has played an important role in boosting the digital transformation for China manufacturing clients. All of the data acquisition SHOULD be agreed by the manufacture’s clients. MORE
Improving the security of diverse medical devices is a major challenge for a variety of reasons, according to security leaders at two device manufacturers, who spell out the key issues in this interview MORE
IIoT-generated data – calibrations, measurements and other parameters – still need to be stored, managed and shared securely. Critical Infrastructure InfoSec Insider IoT Data security digital guardian IIoT Industrial infosec insiders Internet of things manufacturing security concerns tim bandos MORE
Study Suggests Actionable Recommendations Would Improve IoT Security With more than 1,000 IoT security guidelines, recommendations and best practices, which ones should an organization follow? Researchers at Carleton University in Canada say 91 percent of the guides are outcome-based, which are not necessarily easy for manufacturers to follow MORE
There are important lessons to be learned from a crisis, even the ones that are more fiction than fact MORE
The law, which goes into effect in on January 1, requires manufacturers equip devices with 'reasonable security feature(s).' What that entails is still an open question MORE
According to Bloomberg Law, the Bills’ non-specificity regarding what “reasonable” features include is intentional; it is up to the manufacturers to decide what steps to take. Manufacturers argue that the Bills are egregiously vague, and do not apply to companies that import and resell connected devices made in other countries under their own labels. Information Security Online Privacy U.S. MORE
government is taking the first steps toward creating new security requirements for manufacturers to strengthen password protections and improve how vulnerabilities are reported Rules Would Strengthen Password Protection and Vulnerability Reporting With the number of installed internet of things devices expected to surpass 75 billion by 2025, the U.K. MORE
Cyber criminals have stolen customer data from the Titan Manufacturing and Distributing company for nearly one year using a malware. Hackers hit the Titan Manufacturing and Distributing company and compromised its computer system to steal customer payment card data for an entire year. Attackers breached into the computer system at Titan Manufacturing and Distributing company to steal customer payment card data for roughly a year. Titan Manufacturing and Distributing, Inc. MORE
Michael McNeil of Philips on the Manufacturer's Role in Improving Device Cybersecurity Awareness of medical device security issues has grown dramatically over the past few years. But Michael McNeil of device manufacturer Philips argues that cybersecurity is still years behind where it should be, so stakeholders are playing catch-up MORE
Jennings Aske of NY Presbyterian is Encouraged by Manufacturers' Steps Encouraged by the moves of medical device manufacturers, Jennings Aske, CISO of NY Presbyterian Hospital, says the "state of the union" of medical device security has improved dramatically. MORE
Critical Infrastructure Podcasts claroty codemeter critical patch factory security ICS Industrial Industrial Control Systems manufacturing operational technology OT patch patch challenges Patch management podcast SCADA Sharon Brizinov vulnerability MORE
Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. Security experts at ESET revealed that Winnti Group continues to update its arsenal, they observed that the China-linked APT group using a new modular Windows backdoor that they used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. MORE
Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. Experts from security firm Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple forgot did not lock it in laptops. For this reason, security experts warned in the past of the risks for Intel Management Engine vulnerabilities. Securi ty Affairs – Intel Manufacturing Mode, Apple). MORE
The US National Security Agency (NSA) published guidance on the Unified Extensible Firmware Interface (UEFI) Secure Boot customization. The Secure Boot mechanism allows the execution of only software that is trusted by the Original Equipment Manufacturer (OEM). . MORE
GlobalPlatform launches an initiative to help companies secure connected devices and services across markets MORE
Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 282 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! MORE
Stadler, a Swiss manufacturer of railway rolling stock disclosed a data breach, hackers attempted to blackmail the company. International rail vehicle manufacturer, Stadler , disclosed a security breach that might have also allowed the attackers to steal company data. “Stadler initiated the required security actions immediately, a team of external experts was called in and the responsible authorities were involved. MORE
law mandates that manufacturers apply several security controls to their connected devices. Government IoT default password Device security Internet of things iot legislation iot manufacturers IoT security Password regulation Security Updates tech law Uk gov law uk lawThe new U.K. MORE
Achieving the IoT’s bold objective requires not only bringing many small things together and carefully orchestrating their interconnections, but also the assurance that their integrity and the data they collect remains secure and trustworthy. According to Maciej Kranz, Cisco VP for strategic innovation, writing for IoTechExpo.com , “[In 2018] IoT security will become the No. Therefore, manufacturing is the first critical link in the chain to establish trust across the IoT. MORE
Poll shows individuals want better security from IoT device manufacturers as connected products flood the market MORE
Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed online. Gaming hardware manufacturer Razer has suffered a data leak, this is the discovery made by the security researcher Bob Diachenko. MORE
To address the issue, manufacturers need to move away from proprietary communication protocols and embrace secure standards, such as Bluetooth Low Energy Trend Micro Says It Moved Cranes Using RF Software Flaws Radio controllers used in the construction, mining and shipping industries are dangerously vulnerable to hackers, Trend Micro says in a new report. MORE
New research: " Best Practices for IoT Security: What Does That Even Mean? " van Oorschot: Abstract: Best practices for Internet of Things (IoT) security have recently attracted considerable attention worldwide from industry and governments, while academic research has highlighted the failure of many IoT product manufacturers to follow accepted practices. Confusion is evident from guidelines that conflate desired outcomes with security practices to achieve those outcomes. MORE
ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. During our Cyber Threat Intelligence monitoring we spotted new malicious activities targeting some Italian companies operating worldwide in the manufacturing sector, some of them also part of the automotive production chain. SecurityAffairs – Italian manufacturing, hacking). MORE
Data Breach Today
MARCH 23, 2020
As automobile manufacturers and others rush to shift to production of ventilators and other medical equipment and supplies to help fight the COVID-19 pandemic, they must take steps to ensure security, privacy and safety risks are addressed, says technology attorney Steven Teppler
Data Breach Today
JULY 3, 2019
Michael McNeil of Philips on the Manufacturer's Role in Improving Device Cybersecurity Awareness of medical device security issues has grown dramatically over the past few years. But Michael McNeil of device manufacturer Philips argues that cybersecurity is still years behind where it should be, so stakeholders are playing catch-up
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
OpenText Information Management
JUNE 19, 2019
Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center. I … The post Cybersecurity in manufacturing appeared first on OpenText Blogs.
Threatpost
SEPTEMBER 23, 2020
Critical Infrastructure Podcasts claroty codemeter critical patch factory security ICS Industrial Industrial Control Systems manufacturing operational technology OT patch patch challenges Patch management podcast SCADA Sharon Brizinov vulnerability
Security Affairs
FEBRUARY 8, 2020
Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. Security experts from TrapX reported that some IoT devices running Windows 7 have been infected with a piece of malware, is it a supply chain attack? The experts reported that several IoT devices at some major manufacturers have been infected with a cryptocurrency miner in October 2019.
Security Affairs
SEPTEMBER 13, 2020
Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed online. Gaming hardware manufacturer Razer has suffered a data leak, this is the discovery made by the security researcher Bob Diachenko.
|
Threatpost
NOVEMBER 12, 2019
IIoT-generated data – calibrations, measurements and other parameters – still need to be stored, managed and shared securely. Critical Infrastructure InfoSec Insider IoT Data security digital guardian IIoT Industrial infosec insiders Internet of things manufacturing security concerns tim bandos
Security Affairs
MAY 22, 2020
ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. During our Cyber Threat Intelligence monitoring we spotted new malicious activities targeting some Italian companies operating worldwide in the manufacturing sector, some of them also part of the automotive production chain. SecurityAffairs – Italian manufacturing, hacking).
Dark Reading
JANUARY 14, 2020
A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards
Threatpost
SEPTEMBER 10, 2019
manufacturing company is the latest organization to be targeted with the LokiBot trojan - although this most recent campaign harbored some bizarre red flags. Malware Web Security info-stealer IOC IP address LokiBot malicious attachment malicious email malspam malware manufacturing company Spam TrojanA large U.S.
Security Affairs
MAY 10, 2020
Stadler, a Swiss manufacturer of railway rolling stock disclosed a data breach, hackers attempted to blackmail the company. International rail vehicle manufacturer, Stadler , disclosed a security breach that might have also allowed the attackers to steal company data. “Stadler initiated the required security actions immediately, a team of external experts was called in and the responsible authorities were involved.
|
Threatpost
APRIL 25, 2018
Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. . IoT Podcasts DDoS IoT IoT Consumer Device IoT Device IoT security Threatpost podcast
Data Breach Today
JULY 31, 2020
More Devices Affected by 'Ripple20' Vulnerabilities Federal regulators have issued another round of security alerts about vulnerabilities in medical device products from several manufacturers, including an update on those affected by so-called "Ripple-20" flaws earlier identified in the Treck TCP/IP stack.
Dark Reading
JULY 3, 2019
There are important lessons to be learned from a crisis, even the ones that are more fiction than fact
Dark Reading
OCTOBER 23, 2019
GlobalPlatform launches an initiative to help companies secure connected devices and services across markets
Thales eSecurity
SEPTEMBER 11, 2018
Achieving the IoT’s bold objective requires not only bringing many small things together and carefully orchestrating their interconnections, but also the assurance that their integrity and the data they collect remains secure and trustworthy. According to Maciej Kranz, Cisco VP for strategic innovation, writing for IoTechExpo.com , “[In 2018] IoT security will become the No. Therefore, manufacturing is the first critical link in the chain to establish trust across the IoT.
Security Affairs
OCTOBER 14, 2019
Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. Security experts at ESET revealed that Winnti Group continues to update its arsenal, they observed that the China-linked APT group using a new modular Windows backdoor that they used to infect the servers of a high-profile Asian mobile hardware and software manufacturer.
Security Affairs
OCTOBER 4, 2018
Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. Experts from security firm Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple forgot did not lock it in laptops. For this reason, security experts warned in the past of the risks for Intel Management Engine vulnerabilities. Securi ty Affairs – Intel Manufacturing Mode, Apple).
Security Affairs
JANUARY 7, 2019
Cyber criminals have stolen customer data from the Titan Manufacturing and Distributing company for nearly one year using a malware. Hackers hit the Titan Manufacturing and Distributing company and compromised its computer system to steal customer payment card data for an entire year. Attackers breached into the computer system at Titan Manufacturing and Distributing company to steal customer payment card data for roughly a year. Titan Manufacturing and Distributing, Inc.
Hunton Privacy
OCTOBER 1, 2018
According to Bloomberg Law, the Bills’ non-specificity regarding what “reasonable” features include is intentional; it is up to the manufacturers to decide what steps to take. Manufacturers argue that the Bills are egregiously vague, and do not apply to companies that import and resell connected devices made in other countries under their own labels. Information Security Online Privacy U.S.
Perficient Data & Analytics
MAY 9, 2018
In each industry and even the whole economics system, digitization and intelligentization have become buzz-words, and it will help the manufacture industry upgrade its production, management and efficiency to the next level. With strong Consulting and system integration capability, Perficient has played an important role in boosting the digital transformation for China manufacturing clients. All of the data acquisition SHOULD be agreed by the manufacture’s clients.
Information Management Resources
AUGUST 31, 2018
The VPNFilter Internet of Things botnet that Cisco Talos researchers recently discovered is the latest cyber security red flag for all IoT device manufacturers – and it’s an enormous flag. Internet of things Data security Cyber security Cyber attacks
Data Breach Today
AUGUST 26, 2019
Vendors Issued Security Updates to Fix Severe Flaws Several Months Ago Patch or perish redux: Hackers are unleashing automated attacks to find and exploit known flaws in SSL VPNs manufactured by Fortinet and Pulse Secure to steal passwords. The exploits come despite both vendors having released patches several months ago - Pulse Secure in April, Fortinet in May
Threatpost
JANUARY 27, 2020
law mandates that manufacturers apply several security controls to their connected devices. Government IoT default password Device security Internet of things iot legislation iot manufacturers IoT security Password regulation Security Updates tech law Uk gov law uk lawThe new U.K.
Data Breach Today
JULY 7, 2020
Study Suggests Actionable Recommendations Would Improve IoT Security With more than 1,000 IoT security guidelines, recommendations and best practices, which ones should an organization follow? Researchers at Carleton University in Canada say 91 percent of the guides are outcome-based, which are not necessarily easy for manufacturers to follow
Data Breach Today
JULY 5, 2019
Jennings Aske of NY Presbyterian is Encouraged by Manufacturers' Steps Encouraged by the moves of medical device manufacturers, Jennings Aske, CISO of NY Presbyterian Hospital, says the "state of the union" of medical device security has improved dramatically.
Data Breach Today
JUNE 22, 2020
But there are no regulations around how long manufacturers must provide security updates, which could mean a smart device could become a risk Survey Shows Long-Term Software Support Varies Widely If you've managed to equip your home with smart devices and appliances that work properly, you probably think you're all set.
Data Breach Today
MAY 8, 2020
As manufacturers - including companies such as automakers that do not typically produce healthcare devices - race to help fill medical equipment shortages during the COVID-19 crisis, steps must be taken to ensure adequate security testing, says Fairuz Rafique of cybersecurity services firm EmberSec
Data Breach Today
DECEMBER 17, 2019
Improving the security of diverse medical devices is a major challenge for a variety of reasons, according to security leaders at two device manufacturers, who spell out the key issues in this interview
Security Affairs
SEPTEMBER 20, 2020
Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 282 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived!
Hunton Privacy
JULY 17, 2018
Senators sent a letter to the Federal Trade Commission asking the agency to investigate the privacy policies and practices of smart TV manufacturers. Behavioral Advertising Information Security Advertisement Consumer Protection Federal Trade Commission Internet of Things SenateOn July 12, 2018, two U.S.
Data Breach Today
JANUARY 28, 2020
government is taking the first steps toward creating new security requirements for manufacturers to strengthen password protections and improve how vulnerabilities are reported Rules Would Strengthen Password Protection and Vulnerability Reporting With the number of installed internet of things devices expected to surpass 75 billion by 2025, the U.K.
Data Breach Today
MARCH 28, 2019
More 'Defects' Found in Software Engineering and Cybersecurity Processes Britain's intelligence establishment warns that Chinese networking giant Huawei's "software engineering and cybersecurity processes" continue to be beset by unresolved "defects" and that improvements promised by the manufacturer have yet to be seen
Hunton Privacy
FEBRUARY 24, 2016
On February 23, 2016, the Federal Trade Commission announced that it reached a settlement with Taiwanese-based network hardware manufacturer ASUSTeK Computer, Inc. ASUS”), to resolve claims that the company engaged in unfair and deceptive security practices in connection with developing network routers and cloud storage products sold to consumers in the U.S.
Data Breach Today
JANUARY 16, 2019
To address the issue, manufacturers need to move away from proprietary communication protocols and embrace secure standards, such as Bluetooth Low Energy Trend Micro Says It Moved Cranes Using RF Software Flaws Radio controllers used in the construction, mining and shipping industries are dangerously vulnerable to hackers, Trend Micro says in a new report.
Security Affairs
SEPTEMBER 16, 2020
The US National Security Agency (NSA) published guidance on the Unified Extensible Firmware Interface (UEFI) Secure Boot customization. The Secure Boot mechanism allows the execution of only software that is trusted by the Original Equipment Manufacturer (OEM). .
Data Breach Today
NOVEMBER 13, 2018
Manufacturers need to change their approach to securing internet of things devices, says Aloysius Cheang, executive vice president for Asia Pacific at the Center for Strategic Cyberspace + Security Science, a U.K.-based based think tank, who describes what needs to be done
Dark Reading
JANUARY 10, 2019
Poll shows individuals want better security from IoT device manufacturers as connected products flood the market
Dark Reading
SEPTEMBER 19, 2019
The law, which goes into effect in on January 1, requires manufacturers equip devices with 'reasonable security feature(s).' What that entails is still an open question
Schneier on Security
JUNE 25, 2020
New research: " Best Practices for IoT Security: What Does That Even Mean? " van Oorschot: Abstract: Best practices for Internet of Things (IoT) security have recently attracted considerable attention worldwide from industry and governments, while academic research has highlighted the failure of many IoT product manufacturers to follow accepted practices. Confusion is evident from guidelines that conflate desired outcomes with security practices to achieve those outcomes.
247 
Let's personalize your content