Medical Device Security: The Manufacturer's View

Data Breach Today

Michael McNeil of Philips on the Manufacturer's Role in Improving Device Cybersecurity Awareness of medical device security issues has grown dramatically over the past few years.

Cybersecurity in manufacturing

OpenText Information Management

Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

IoT devices at major Manufacturers infected with crypto-miner

Security Affairs

Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. Security experts from TrapX reported that some IoT devices running Windows 7 have been infected with a piece of malware, is it a supply chain attack?

Plugging the Data Leak in Manufacturing

Threatpost

IIoT-generated data – calibrations, measurements and other parameters – still need to be stored, managed and shared securely.

Consumer Reports Calls for IoT Manufacturers to Raise Security Standards

Dark Reading

A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards

U.S. Manufacturer Most Recent Target of LokiBot Malspam Campaign

Threatpost

manufacturing company is the latest organization to be targeted with the LokiBot trojan - although this most recent campaign harbored some bizarre red flags. A large U.S.

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Security Affairs

Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. The post Winnti Group was planning a devastating supply-chain attack against Asian manufacturer appeared first on Security Affairs.

To Make the Internet of Things Safe, Start with Manufacturing

Thales eSecurity

Achieving the IoT’s bold objective requires not only bringing many small things together and carefully orchestrating their interconnections, but also the assurance that their integrity and the data they collect remains secure and trustworthy. Securing the IoT from the Ground Up.

Podcast: Why Manufacturers Struggle To Secure IoT

Threatpost

Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. . IoT Podcasts DDoS IoT IoT Consumer Device IoT Device IoT security Threatpost podcast

IoTopia Framework Aims to Bring Security to Device Manufacturers

Dark Reading

GlobalPlatform launches an initiative to help companies secure connected devices and services across markets

Digital Transformation in a Global Manufacture Organization

Perficient Data & Analytics

In each industry and even the whole economics system, digitization and intelligentization have become buzz-words, and it will help the manufacture industry upgrade its production, management and efficiency to the next level.

Hackers have stolen customer data from Titan Manufacturing and Distributing company for nearly one year

Security Affairs

Cyber criminals have stolen customer data from the Titan Manufacturing and Distributing company for nearly one year using a malware. Hackers hit the Titan Manufacturing and Distributing company and compromised its computer system to steal customer payment card data for an entire year. Attackers breached into the computer system at Titan Manufacturing and Distributing company to steal customer payment card data for roughly a year. Titan Manufacturing and Distributing, Inc.

CVE-2018-4251 – Apple did not disable Intel Manufacturing Mode in its laptops

Security Affairs

Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. Experts from security firm Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple forgot did not lock it in laptops. For this reason, security experts warned in the past of the risks for Intel Management Engine vulnerabilities. Securi ty Affairs – Intel Manufacturing Mode, Apple).

California Enacts New Requirements for Internet of Things Manufacturers

Hunton Privacy

According to Bloomberg Law, the Bills’ non-specificity regarding what “reasonable” features include is intentional; it is up to the manufacturers to decide what steps to take. Manufacturers argue that the Bills are egregiously vague, and do not apply to companies that import and resell connected devices made in other countries under their own labels. Information Security Online Privacy U.S.

Hackers Hit Unpatched Pulse Secure and Fortinet SSL VPNs

Data Breach Today

Vendors Issued Security Updates to Fix Severe Flaws Several Months Ago Patch or perish redux: Hackers are unleashing automated attacks to find and exploit known flaws in SSL VPNs manufactured by Fortinet and Pulse Secure to steal passwords.

Mandatory IoT Security in the Offing with U.K. Proposal

Threatpost

law mandates that manufacturers apply several security controls to their connected devices. Government IoT default password Device security Internet of things iot legislation iot manufacturers IoT security Password regulation Security Updates tech law Uk gov law uk law

IoT 68

Medical Device Security: The CISO's View

Data Breach Today

Jennings Aske of NY Presbyterian is Encouraged by Manufacturers' Steps Encouraged by the moves of medical device manufacturers, Jennings Aske, CISO of NY Presbyterian Hospital, says the "state of the union" of medical device security has improved dramatically.

UK Government Proposes IoT Security Measures

Data Breach Today

government is taking the first steps toward creating new security requirements for manufacturers to strengthen password protections and improve how vulnerabilities are reported

IoT 153

Why Securing Medical Devices Is So Challenging

Data Breach Today

Improving the security of diverse medical devices is a major challenge for a variety of reasons, according to security leaders at two device manufacturers, who spell out the key issues in this interview

Huawei Security Shortcomings Cited by British Intelligence

Data Breach Today

More 'Defects' Found in Software Engineering and Cybersecurity Processes Britain's intelligence establishment warns that Chinese networking giant Huawei's "software engineering and cybersecurity processes" continue to be beset by unresolved "defects" and that improvements promised by the manufacturer have yet to be seen.

California's IoT Security Law Causing Confusion

Dark Reading

The law, which goes into effect in on January 1, requires manufacturers equip devices with 'reasonable security feature(s).' What that entails is still an open question

IoT 107

VPNFilter should compel IoT manufacturers to adopt a secure by design mindset

Information Management Resources

The VPNFilter Internet of Things botnet that Cisco Talos researchers recently discovered is the latest cyber security red flag for all IoT device manufacturers – and it’s an enormous flag. Internet of things Data security Cyber security Cyber attacks

Your Garage Opener Is More Secure Than Industrial Remotes

Data Breach Today

To address the issue, manufacturers need to move away from proprietary communication protocols and embrace secure standards, such as Bluetooth Low Energy

Mining 236

The Unsexy Threat to Election Security

Krebs on Security

Much has been written about the need to further secure our elections, from ensuring the integrity of voting machines to combating fake news. Public confidence is at stake, even if the vote itself is secure.”

IoT Security Woes Plague Healthcare Industry

Threatpost

Hospitals and IoT device manufacturers must take a dual approach in securing connected telehealth devices. IoT Vulnerabilities Connected devices Cybersecurity enfuse 2019 Healthcare Internet of things iot medical IoT regulation Medical device security regulation SB-327

IoT 109

Senators Ask FTC to Investigate Smart TV Manufacturers

Hunton Privacy

Senators sent a letter to the Federal Trade Commission asking the agency to investigate the privacy policies and practices of smart TV manufacturers. Behavioral Advertising Information Security Advertisement Consumer Protection Federal Trade Commission Internet of Things SenateOn July 12, 2018, two U.S.

Consumers Demand Security from Smart Device Makers

Dark Reading

Poll shows individuals want better security from IoT device manufacturers as connected products flood the market

Welcome to the era of the industrial cloud

OpenText Information Management

The industrial Internet of Things (IIoT) is having a profound effect on how manufacturing organizations share information. Industries Automotive & Manufacturing cloud IoT Industrial Internet of Things

Cloud 81

Security Affairs newsletter Round 250

Security Affairs

The best news of the week with Security Affairs. Japanese defense contractors Pasco and Kobe Steel disclose security breaches. IoT devices at major Manufacturers infected with crypto-miner. RobbinHood ransomware exploit GIGABYTE driver flaw to kill security software.

Top security challenges that will impact the Internet of Things

Information Management Resources

The increased proliferation of connected devices has meant that the challenges facing start-ups and IoT manufacturers in 2020 have evolved. Cyber security Data security Internet of things

IoT Security: Essential Steps for Security by Design

Data Breach Today

Manufacturers need to change their approach to securing internet of things devices, says Aloysius Cheang, executive vice president for Asia Pacific at the Center for Strategic Cyberspace + Security Science, a U.K.-based based think tank, who describes what needs to be done

IoT 122

FTC Settles with Router Manufacturer over Software Security Flaws

Hunton Privacy

On February 23, 2016, the Federal Trade Commission announced that it reached a settlement with Taiwanese-based network hardware manufacturer ASUSTeK Computer, Inc. ASUS”), to resolve claims that the company engaged in unfair and deceptive security practices in connection with developing network routers and cloud storage products sold to consumers in the U.S.

Philips, BD Yet Again Issue Medical Device Security Alerts

Data Breach Today

Some security experts say the two companies' transparency about cybersecurity issues - including new alerts issued last week - should be emulated by other manufacturers

Supply Chain Security 101: An Expert’s View

Krebs on Security

alongside Tony Sager , senior vice president and chief evangelist at the Center for Internet Security and a former bug hunter at the U.S. National Security Agency. Tony Sager, senior vice president and chief evangelist at the Center for Internet Security.

The Growing Presence (and Security Risks) of IoT

Thales eSecurity

The issue is that these tens of billions of new devices will likely amplify the inherent security risks of IoT. Bad actors can subsequently exploit these security weaknesses to accomplish a number of malicious purposes. Take manufacturing, for instance. Data security

IoT 127

Hacking Hardware Security Modules

Schneier on Security

Security researchers Gabriel Campana and Jean-Baptiste Bédrune are giving a hardware security module (HSM) talk at BlackHat in August: This highly technical presentation targets an HSM manufactured by a vendor whose solutions are usually found in major banks and large cloud service providers.

Securing the Internet of Things in the age of 5G

Information Management Resources

The IoT poses a challenge since the majority of mistakes of the previous generation of IoT devices have not been fixed nor have lessons been learned on the part of many manufacturers. Data security Network security Internet of things

IoT 43