IoT Security Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Cybersecurity Funding

Booz Allen Invests in Machine Identity Firm Corsha

‘Machine identities’, often used interchangeably with ‘non-human identities’ (NHIs), have been increasing rapidly since the start of digital transformation.

Kevin Townsend3 days ago

IoT Security

Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack

PCA Cyber Security has discovered critical vulnerabilities in the BlueSDK Bluetooth stack that could have allowed remote code execution on car systems.

Eduard Kovacs3 days ago

IoT Security

New Vulnerabilities Expose Millions of Brother Printers to Hacking

Rapid7 has found several serious vulnerabilities affecting over 700 printer models from Brother and other vendors.

Eduard KovacsJune 25, 2025

IoT Security

New ‘SmartAttack’ Steals Air-Gapped Data Using Smartwatches

The new attack technique uses smartwatches to capture ultrasonic covert communication in air-gapped environments and exfiltrate data.

Ionut ArghireJune 12, 2025

IoT Security

Over $1 Million Offered at New Pwn2Own Automotive Hacking Contest

ZDI is offering more than $1 million at the Pwn2Own Automotive hacking contest, hosted in January at the Automotive World conference in Tokyo.

Ionut ArghireSeptember 1, 2023

IoT Security

Healthcare Organizations Hit by Cyberattacks Last Year Reported Big Impact, Costs

Roughly 78% of the healthcare organizations in North America, South America, the APAC region, and Europe experienced a cyberattack over the past year, according...

Ionut ArghireAugust 30, 2023

ICS/OT

Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick?

As smart cities evolve with more and more integrated connected services, cybersecurity concerns will increase dramatically.

Kevin TownsendAugust 23, 2023

IoT Security

TP-Link Smart Bulb Vulnerabilities Expose Households to Hacker Attacks

Vulnerabilities in the TP-Link Tapo L530E smart bulb and accompanying mobile application can be exploited to obtain the local Wi-Fi password.

Ionut ArghireAugust 22, 2023

Government

CISA Calls Urgent Attention to UEFI Attack Surfaces

The US government's cybersecurity agency describes UEFI as "critical attack surface" that requires urgent security attention.

Ryan NaraineAugust 3, 2023

IoT Security

Multiple Security Issues Identified in Peloton Fitness Equipment

Internet-connected Peloton workout equipment is impacted by multiple security risks, such as having USB debugging enabled.

Ionut ArghireJuly 27, 2023

Government

White House Unveils Cybersecurity Labeling Program for Smart Devices

New US cyber program will label smart devices that are considered safer and less vulnerable to attacks.

Ionut ArghireJuly 18, 2023

Cybercrime

In Other News: Microsoft Win32 App Isolation, Tsunami Hits Linux Servers, ChatGPT Credentials Exposed on Dark Web

Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of June 19,...

SecurityWeek NewsJune 23, 2023

ICS/OT

Enphase Ignores CISA Request to Fix Remotely Exploitable Flaws

Enphase Energy has ignored CISA requests to fix remotely exploitable vulnerabilities in Enphase products.

Ionut ArghireJune 21, 2023

IoT Security

New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones

New research conducted by IOActive shows the potential of electromagnetic fault injection (EMFI) attacks against drones.

Eduard KovacsJune 13, 2023

IoT Security

Amazon Settles Ring Customer Spying Complaint

The FTC charged Amazon-owned Ring with failing to implement basic protections to stop hackers or employees from accessing people's devices or accounts.

AFPJune 1, 2023

IoT Security

FDA, CISA: Illumina Medical Devices Vulnerable to Remote Hacking

FDA and CISA notify healthcare providers about a component used by several Illumina medical devices being affected by serious vulnerabilities that can allow remote...

Eduard KovacsApril 28, 2023

Government

CISA Introduces Secure-by-design and Secure-by-default Development Principles

CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.

Kevin TownsendApril 14, 2023

IoT Security

Critical Vulnerability in Hikvision Storage Solutions Exposes Video Security Data

Hikvision patches CVE-2023-28808, a critical authentication bypass vulnerability that exposes video data stored on its Hybrid SAN and cluster storage products.

Eduard KovacsApril 13, 2023

IoT Security

Thieves Use CAN Injection Hack to Steal Cars

An innocent-looking portable speaker can hide a hacking device that launches CAN injection attacks, which have been used to steal cars.

Eduard KovacsApril 6, 2023

IoT Security

Nexx Ignores Vulnerabilities Allowing Hackers to Remotely Open Garage Doors

Nexx has ignored repeated attempts to report critical product vulnerabilities that can be exploited to remotely open garage doors, and take control of alarms...

Eduard KovacsApril 5, 2023

IoT Security

FDA Announces New Cybersecurity Requirements for Medical Devices

The FDA is asking medical device manufacturers to provide cybersecurity-related information when submitting an application for a new product.

Eduard KovacsMarch 31, 2023

IoT Security

Tesla Hacked Twice at Pwn2Own Exploit Contest

Researchers at offensive hacking shop Synacktiv demonstrated successful exploit chains and were able to “fully compromise” Tesla’s newest electric car and take top billing...

Ryan NaraineMarch 24, 2023

CISO Strategy

How the Best CISOs Drive Operational Resilience

Cyberattacks have exposed a myriad of vulnerabilities in our healthcare infrastructure, and will continue to do so as new and innovative medical technologies are...

Galina AntovaMarch 14, 2023

IoT Security

Unpatched Akuvox Smart Intercom Vulnerabilities Can Be Exploited for Spying

Researchers discover a dozen serious vulnerabilities in Akuvox smart intercom, but the vendor has not released any patches.

Eduard KovacsMarch 10, 2023

Page 5 of 27‹ Previous 1 2 3 456 7 8 9 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Jessica Newman has joined Sophos as General Manager of Global Cyber Insurance.

Breach and attack simulation solutions provider AttackIQ has appointed Pete Luban as Field Chief Information Security Officer.

Matthew Cowell has assumed the role of VP of Strategic Alliances at Nozomi Networks. He previously served in the same role at Dragos.

Bret Arsenault is retiring from his full-time role after 35 years at Microsoft.

Social engineering defense platform Doppel has appointed Bobby Ford as Chief Strategy and Experience Officer.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Cybersecurity Funding

Booz Allen Invests in Machine Identity Firm Corsha

IoT Security

Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack

IoT Security

New Vulnerabilities Expose Millions of Brother Printers to Hacking

IoT Security

New ‘SmartAttack’ Steals Air-Gapped Data Using Smartwatches

IoT Security

Over $1 Million Offered at New Pwn2Own Automotive Hacking Contest

IoT Security

Healthcare Organizations Hit by Cyberattacks Last Year Reported Big Impact, Costs

ICS/OT

Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick?

IoT Security

TP-Link Smart Bulb Vulnerabilities Expose Households to Hacker Attacks

Government

CISA Calls Urgent Attention to UEFI Attack Surfaces

IoT Security

Multiple Security Issues Identified in Peloton Fitness Equipment

Government

White House Unveils Cybersecurity Labeling Program for Smart Devices

Cybercrime

In Other News: Microsoft Win32 App Isolation, Tsunami Hits Linux Servers, ChatGPT Credentials Exposed on Dark Web

ICS/OT

Enphase Ignores CISA Request to Fix Remotely Exploitable Flaws

IoT Security

New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones

IoT Security

Amazon Settles Ring Customer Spying Complaint

IoT Security

FDA, CISA: Illumina Medical Devices Vulnerable to Remote Hacking

Government

CISA Introduces Secure-by-design and Secure-by-default Development Principles

IoT Security

Critical Vulnerability in Hikvision Storage Solutions Exposes Video Security Data

IoT Security

Thieves Use CAN Injection Hack to Steal Cars

IoT Security

Nexx Ignores Vulnerabilities Allowing Hackers to Remotely Open Garage Doors

IoT Security

FDA Announces New Cybersecurity Requirements for Medical Devices

IoT Security

Tesla Hacked Twice at Pwn2Own Exploit Contest

CISO Strategy

How the Best CISOs Drive Operational Resilience

IoT Security

Unpatched Akuvox Smart Intercom Vulnerabilities Can Be Exploited for Spying

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Why Sincerity Is a Strategic Asset in Cybersecurity

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Daily Briefing Newsletter