IoT Security Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

IoT Security

Amazon Settles Ring Customer Spying Complaint

The FTC charged Amazon-owned Ring with failing to implement basic protections to stop hackers or employees from accessing people's devices or accounts.

AFP8 hours ago

IoT Security

FDA, CISA: Illumina Medical Devices Vulnerable to Remote Hacking

FDA and CISA notify healthcare providers about a component used by several Illumina medical devices being affected by serious vulnerabilities that can allow remote...

Eduard KovacsApril 28, 2023

Government

CISA Introduces Secure-by-design and Secure-by-default Development Principles

CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.

Kevin TownsendApril 14, 2023

IoT Security

Critical Vulnerability in Hikvision Storage Solutions Exposes Video Security Data

Hikvision patches CVE-2023-28808, a critical authentication bypass vulnerability that exposes video data stored on its Hybrid SAN and cluster storage products.

Eduard KovacsApril 13, 2023

IoT Security

Thieves Use CAN Injection Hack to Steal Cars

An innocent-looking portable speaker can hide a hacking device that launches CAN injection attacks, which have been used to steal cars.

Eduard KovacsApril 6, 2023

IoT Security

Nexx Ignores Vulnerabilities Allowing Hackers to Remotely Open Garage Doors

Nexx has ignored repeated attempts to report critical product vulnerabilities that can be exploited to remotely open garage doors, and take control of alarms...

Eduard KovacsApril 5, 2023

IoT Security

Over 80,000 Unpatched Hikvision Cameras Exposed to Takeover

Cybersecurity firm Cyfirma has identified more than 80,000 Hikvision cameras that haven’t been patched against a critical code execution vulnerability exploited in the wild.

Ionut ArghireAugust 24, 2022

ICS/OT

Securing Smart Cities from the Ground Up

Smart City network infrastructure demands a proactive approach to find vulnerabilities before hackers find them

Marie HattarJuly 28, 2022

ICS/OT

Updated TSA Pipeline Cybersecurity Requirements Offer More Flexibility

The Transportation Security Administration (TSA) has updated its directive for oil and natural gas pipeline cybersecurity, providing owners and operators more flexibility in achieving...

Eduard KovacsJuly 25, 2022

IoT Security

Unpatched Micodus GPS Tracker Vulnerabilities Allow Hackers to Remotely Disable Cars

Widely used vehicle GPS trackers from Micodus are affected by critical vulnerabilities that can be exploited by hackers to stalk people and remotely disable...

Eduard KovacsJuly 19, 2022

IoT Security

Honda Admits Hackers Could Unlock Car Doors, Start Engines

“Rolling-PWN attack” targets Remote Keyless System on Honda vehicles

Ionut ArghireJuly 13, 2022

Cyberwarfare

False Air Raid Sirens in Israel Possibly Triggered by Iranian Cyberattack

Air raid sirens sounded in the Israeli cities of Jerusalem and Eilat on Sunday evening and it appears that they were triggered by a...

Eduard KovacsJune 21, 2022

ICS/OT

Schneider Electric, Claroty Launch Cybersecurity Solution for Buildings

Schneider Electric and industrial cybersecurity firm Claroty on Monday announced the launch of a joint solution designed for securing smart buildings.

Eduard KovacsJune 14, 2022

IoT Security

Researcher Shows How Tesla Key Card Feature Can Be Abused to Steal Cars

A researcher has shown how a key card feature introduced by Tesla last year could be abused to add an unauthorized key that allows...

Eduard KovacsJune 13, 2022

IoT Security

Vulnerabilities in HID Mercury Access Controllers Allow Hackers to Unlock Doors

Access control products using HID Mercury controllers are affected by critical vulnerabilities that can be exploited by hackers to remotely unlock doors.

Eduard KovacsJune 10, 2022

Cybercrime

Threat Actors Start Exploiting Meeting Owl Pro Vulnerability Days After Disclosure

Threat actors have already started exploiting a severe vulnerability that Owl Labs addressed in its video conferencing devices earlier this week.

Ionut ArghireJune 9, 2022

IoT Security

Owl Labs Patches Severe Vulnerability in Video Conferencing Devices

Video conferencing company Owl Labs has released patches for a severe vulnerability affecting its Meeting Owl Pro and Whiteboard Owl devices.Owl Labs’ Meeting Owl...

Ionut ArghireJune 8, 2022

Endpoint Security

Critical U-Boot Vulnerability Allows Rooting of Embedded Systems

A critical vulnerability in the U-Boot boot loader could be exploited to write arbitrary data, which can allow an attacker to root Linux-based embedded...

Ionut ArghireJune 6, 2022