Medical Device Security: The Manufacturer's View

Data Breach Today

Michael McNeil of Philips on the Manufacturer's Role in Improving Device Cybersecurity Awareness of medical device security issues has grown dramatically over the past few years.

COVID-19: Security Risks As Manufacturers Shift Gears

Data Breach Today

As automobile manufacturers and others rush to shift to production of ventilators and other medical equipment and supplies to help fight the COVID-19 pandemic, they must take steps to ensure security, privacy and safety risks are addressed, says technology attorney Steven Teppler

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Cybersecurity in manufacturing

OpenText Information Management

Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center.

IoT devices at major Manufacturers infected with crypto-miner

Security Affairs

Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. Security experts from TrapX reported that some IoT devices running Windows 7 have been infected with a piece of malware, is it a supply chain attack?

Tesla, SpaceX Parts Manufacturer Suffers Data Breach

Dark Reading

Visser Precision has confirmed a security incident likely caused by the data-stealing DoppelPaymer ransomware

Consumer Reports Calls for IoT Manufacturers to Raise Security Standards

Dark Reading

A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. The code contains some “funny” comments related to the twitter community of security researchers which constantly monitor the actor operations.

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Security Affairs

Stadler, a Swiss manufacturer of railway rolling stock disclosed a data breach, hackers attempted to blackmail the company. International rail vehicle manufacturer, Stadler , disclosed a security breach that might have also allowed the attackers to steal company data.

U.S. Manufacturer Most Recent Target of LokiBot Malspam Campaign

Threatpost

manufacturing company is the latest organization to be targeted with the LokiBot trojan - although this most recent campaign harbored some bizarre red flags. A large U.S.

Medical Device Security Alerts: The Latest Updates

Data Breach Today

More Devices Affected by 'Ripple20' Vulnerabilities Federal regulators have issued another round of security alerts about vulnerabilities in medical device products from several manufacturers, including an update on those affected by so-called "Ripple-20" flaws earlier identified in the Treck TCP/IP stack.

20 Questions to Ask During a Real (or Manufactured) Security Crisis

Dark Reading

There are important lessons to be learned from a crisis, even the ones that are more fiction than fact

To Make the Internet of Things Safe, Start with Manufacturing

Thales eSecurity

Achieving the IoT’s bold objective requires not only bringing many small things together and carefully orchestrating their interconnections, but also the assurance that their integrity and the data they collect remains secure and trustworthy. Securing the IoT from the Ground Up.

Podcast: Why Manufacturers Struggle To Secure IoT

Threatpost

Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. . IoT Podcasts DDoS IoT IoT Consumer Device IoT Device IoT security Threatpost podcast

IoTopia Framework Aims to Bring Security to Device Manufacturers

Dark Reading

GlobalPlatform launches an initiative to help companies secure connected devices and services across markets

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Security Affairs

Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. The post Winnti Group was planning a devastating supply-chain attack against Asian manufacturer appeared first on Security Affairs.

Digital Transformation in a Global Manufacture Organization

Perficient Data & Analytics

In each industry and even the whole economics system, digitization and intelligentization have become buzz-words, and it will help the manufacture industry upgrade its production, management and efficiency to the next level.

More Than 1,000 IoT Security Guidelines: Which One to Use?

Data Breach Today

Study Suggests Actionable Recommendations Would Improve IoT Security With more than 1,000 IoT security guidelines, recommendations and best practices, which ones should an organization follow?

IoT 191

California Enacts New Requirements for Internet of Things Manufacturers

Hunton Privacy

According to Bloomberg Law, the Bills’ non-specificity regarding what “reasonable” features include is intentional; it is up to the manufacturers to decide what steps to take. Manufacturers argue that the Bills are egregiously vague, and do not apply to companies that import and resell connected devices made in other countries under their own labels. Information Security Online Privacy U.S.

CVE-2018-4251 – Apple did not disable Intel Manufacturing Mode in its laptops

Security Affairs

Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. Experts from security firm Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple forgot did not lock it in laptops. For this reason, security experts warned in the past of the risks for Intel Management Engine vulnerabilities. Securi ty Affairs – Intel Manufacturing Mode, Apple).

Smart Devices: How Long Will Security Updates Be Issued?

Data Breach Today

But there are no regulations around how long manufacturers must provide security updates, which could mean a smart device could become a risk

Hackers have stolen customer data from Titan Manufacturing and Distributing company for nearly one year

Security Affairs

Cyber criminals have stolen customer data from the Titan Manufacturing and Distributing company for nearly one year using a malware. Hackers hit the Titan Manufacturing and Distributing company and compromised its computer system to steal customer payment card data for an entire year. Attackers breached into the computer system at Titan Manufacturing and Distributing company to steal customer payment card data for roughly a year. Titan Manufacturing and Distributing, Inc.

Mandatory IoT Security in the Offing with U.K. Proposal

Threatpost

law mandates that manufacturers apply several security controls to their connected devices. Government IoT default password Device security Internet of things iot legislation iot manufacturers IoT security Password regulation Security Updates tech law Uk gov law uk law

IoT 90

Hackers Hit Unpatched Pulse Secure and Fortinet SSL VPNs

Data Breach Today

Vendors Issued Security Updates to Fix Severe Flaws Several Months Ago Patch or perish redux: Hackers are unleashing automated attacks to find and exploit known flaws in SSL VPNs manufactured by Fortinet and Pulse Secure to steal passwords.

Testing Medical Device Security During COVID-19 Crisis

Data Breach Today

As manufacturers - including companies such as automakers that do not typically produce healthcare devices - race to help fill medical equipment shortages during the COVID-19 crisis, steps must be taken to ensure adequate security testing, says Fairuz Rafique of cybersecurity services firm EmberSec

Medical Device Security: The CISO's View

Data Breach Today

Jennings Aske of NY Presbyterian is Encouraged by Manufacturers' Steps Encouraged by the moves of medical device manufacturers, Jennings Aske, CISO of NY Presbyterian Hospital, says the "state of the union" of medical device security has improved dramatically.

VPNFilter should compel IoT manufacturers to adopt a secure by design mindset

Information Management Resources

The VPNFilter Internet of Things botnet that Cisco Talos researchers recently discovered is the latest cyber security red flag for all IoT device manufacturers – and it’s an enormous flag. Internet of things Data security Cyber security Cyber attacks

UK Government Proposes IoT Security Measures

Data Breach Today

government is taking the first steps toward creating new security requirements for manufacturers to strengthen password protections and improve how vulnerabilities are reported

IoT 153

Huawei Security Shortcomings Cited by British Intelligence

Data Breach Today

More 'Defects' Found in Software Engineering and Cybersecurity Processes Britain's intelligence establishment warns that Chinese networking giant Huawei's "software engineering and cybersecurity processes" continue to be beset by unresolved "defects" and that improvements promised by the manufacturer have yet to be seen.

Your Garage Opener Is More Secure Than Industrial Remotes

Data Breach Today

To address the issue, manufacturers need to move away from proprietary communication protocols and embrace secure standards, such as Bluetooth Low Energy

Mining 236

California's IoT Security Law Causing Confusion

Dark Reading

The law, which goes into effect in on January 1, requires manufacturers equip devices with 'reasonable security feature(s).' What that entails is still an open question

IoT 110

Why Securing Medical Devices Is So Challenging

Data Breach Today

Improving the security of diverse medical devices is a major challenge for a variety of reasons, according to security leaders at two device manufacturers, who spell out the key issues in this interview

Analyzing IoT Security Best Practices

Schneier on Security

New research: " Best Practices for IoT Security: What Does That Even Mean? " Confusion is evident from guidelines that conflate desired outcomes with security practices to achieve those outcomes. by Christopher Bellman and Paul C.

IoT 94

Senators Ask FTC to Investigate Smart TV Manufacturers

Hunton Privacy

Senators sent a letter to the Federal Trade Commission asking the agency to investigate the privacy policies and practices of smart TV manufacturers. Behavioral Advertising Information Security Advertisement Consumer Protection Federal Trade Commission Internet of Things SenateOn July 12, 2018, two U.S.

Consumers Demand Security from Smart Device Makers

Dark Reading

Poll shows individuals want better security from IoT device manufacturers as connected products flood the market

Welcome to the era of the industrial cloud

OpenText Information Management

The industrial Internet of Things (IIoT) is having a profound effect on how manufacturing organizations share information. Industries Automotive & Manufacturing cloud IoT Industrial Internet of Things

Cloud 89

FTC Settles with Router Manufacturer over Software Security Flaws

Hunton Privacy

On February 23, 2016, the Federal Trade Commission announced that it reached a settlement with Taiwanese-based network hardware manufacturer ASUSTeK Computer, Inc. ASUS”), to resolve claims that the company engaged in unfair and deceptive security practices in connection with developing network routers and cloud storage products sold to consumers in the U.S.

IoT Security: Essential Steps for Security by Design

Data Breach Today

Manufacturers need to change their approach to securing internet of things devices, says Aloysius Cheang, executive vice president for Asia Pacific at the Center for Strategic Cyberspace + Security Science, a U.K.-based based think tank, who describes what needs to be done

IoT 122

Securing the International IoT Supply Chain

Schneier on Security

Together with Nate Kim (former student) and Trey Herr (Atlantic Council Cyber Statecraft Initiative), I have written a paper on IoT supply chain security. The basic problem we try to solve is: how to you enforce IoT security regulations when most of the stuff is made in other countries?

IoT 78

Philips, BD Yet Again Issue Medical Device Security Alerts

Data Breach Today

Some security experts say the two companies' transparency about cybersecurity issues - including new alerts issued last week - should be emulated by other manufacturers

Sectigo Buys Icon Labs to Expand IoT Security Platform

Dark Reading

End-to-end IoT security product aims to give manufacturers, systems integrators, and businesses a means to harden device security