Security & the Internet of Things: IoT, OT, IIoT, Page 2 | Scoop.it

Join Free

Follow, research and publish the best content

Security & the Internet of Things: IoT, OT, IIoT

Curated by Judy Curtis / SIPR

Your new post is loading...

Scooped by Judy Curtis / SIPR

May 8, 2018 11:38 AM

Scoop.it!

Picture This. Now Protect It. | SecurityWeek.Com | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.securityweek.com - May 8, 2018 11:38 AM

Judy Curtis / SIPR's insight:

With GDPR nearly upon us, organizations must consider how they are protecting employee and consumer information and the impact of practices by third parties and suppliers. The risk of privacy violations, compliance issues and financial damage, not to mention concerns about reputations, affect us all.

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 18, 2018 8:47 AM

Scoop.it!

'Lazy hackers' turn to automated attack tools | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.bbc.com - April 17, 2018 6:39 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 17, 2018 9:43 AM

Scoop.it!

Keeping the Driverless Car Unhackable – Securing the IIoT in Autonomous Systems | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.designnews.com - April 13, 2018 6:01 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 16, 2018 11:53 AM

Scoop.it!

8 technologies that an organization can adopt to help address its cybersecurity challenges | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From iiot-world.com - October 25, 2017 9:02 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 12, 2018 2:45 PM

Scoop.it!

Top 3 Pressing Cyber Threats For IoT In 2018 | BCW | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.businesscomputingworld.co.uk - April 11, 2018 9:25 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 6, 2018 5:35 PM

Scoop.it!

IoT Security Spending Due to Surge as Enterprises Address Big Gaps | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From securityboulevard.com - April 5, 2018 3:37 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

April 4, 2018 3:45 PM

Scoop.it!

Time to Tighten Up Device Security for the IoT | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From blog.avast.com - March 9, 2018 8:16 PM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 30, 2018 9:01 AM

Scoop.it!

Boeing Possibly Hit by ‘WannaCry’ Malware Attack - The New York Times | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.nytimes.com - March 28, 2018 8:44 PM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 25, 2018 11:21 PM

Scoop.it!

Symantec: Look for cryptojacking to tie into IoT devices | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.cyberscoop.com - March 22, 2018 12:01 AM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 25, 2018 11:19 PM

Scoop.it!

Consumer Reports: Flaws Make Samsung, Roku TVs Vulnerable | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From securityledger.com - February 7, 2018 9:42 PM

No comment yet.

Sign up to comment

Rescooped by Judy Curtis / SIPR from Security in Internet of Things

March 9, 2018 10:48 AM

Scoop.it!

Organisations need to focus on security and standards to reap the rewards of IoT | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From bdtechtalks.com - March 8, 2018 9:00 AM

Sheila Barron's curator insight, March 17, 2018 5:18 PM

We must be sure that security standards are being taken care of when using IOT. Sensible data's protection must be a priority for IOT companies.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 9, 2018 9:25 AM

Scoop.it!

Five worrying cyberthreats to connected tech | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.raconteur.net - March 6, 2018 7:54 PM

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 7, 2018 12:18 AM

Scoop.it!

Hackers create 'ghost' traffic jam to confound smart traffic systems • The Register | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.theregister.co.uk - March 7, 2018 12:13 AM

Judy Curtis / SIPR's insight:

This traffic jam attack has claimed a 94 per cent success rate, and on average, would increase delays by 38.2 per cent.

The best defense against these and other attacks, researchers say, is a combination of more robust algorithms, better performance in roadside units that give the system its realtime feedback, and better validation of vehicle-originated messages

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 6, 2018 8:51 AM

Scoop.it!

Securing the Web of Wearables, Smartphones & Cloud | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.darkreading.com - March 1, 2018 4:45 PM

Judy Curtis / SIPR's insight:

Developing for the IoT: What to Keep in Mind
Two best practices for IoT businesses to prioritize as they create and connect new products. The first task is getting the security and product teams on the same page.

Second: IoT developers should look at existing vulnerabilities from an IoT point of view. Often, old flaws can have a "butterfly effect" in the IoT and lead to wearable devices getting bricked. Furthermore, vulnerabilities in some parts of the IoT — for example, a smartphone — can affect other connected devices.

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

March 2, 2018 12:01 PM

Scoop.it!

A 1.3Tbs DDoS Hit GitHub, the Largest Yet Recorded | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.wired.com - March 2, 2018 11:53 AM

Judy Curtis / SIPR's insight:

Lily Hay Newman writes in Wired about the attack on the developer platform GitHub on the last day of February 2018 - the most powerful distributed denial of service attack recorded to date. To attackers, the beauty of memcached DDoS attacks is there's no malware to distribute, and no botnet to maintain.

Newman writes: The web monitoring and network intelligence firm ThousandEyes observed the GitHub attack on Wednesday. "This was a successful mitigation. Everything transpired in 15 to 20 minutes," says Alex Henthorne-Iwane, vice president of product marketing at ThousandEyes. "If you look at the stats you’ll find that globally speaking DDoS attack detection alone generally takes about an hour plus, which usually means there’s a human involved looking and kind of scratching their head. When it all happens within 20 minutes you know that this is driven primarily by software. It’s nice to see a picture of success."

GitHub continued routing its traffic through Prolexic for a few hours to ensure that the situation was resolved. Akamai's Shaul says he suspects that attackers targeted GitHub simply because it is a high-profile service that would be impressive to take down. The attackers also may have been hoping to extract a ransom. "The duration of this attack was fairly short," he says. "I think it didn’t have any impact so they just said that’s not worth our time anymore."

Until memcached servers get off the public internet, though, it seems likely that attackers will give a DDoS of this scale another shot.

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

February 27, 2018 11:50 PM

Scoop.it!

IoT Security: Glass Half-Empty or Half-Full? | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From securityboulevard.com - February 27, 2018 2:00 AM

Judy Curtis / SIPR's insight:

Scot Finnie comments on a new Forrester Research survey on companies with security policies in place. How can companies that claim to be prepared for IoT threats be sure they are safe from evolving, emerging threats?

Spending is on the rise. And infosec professionals should be prepared for threats from a wide range of vectors. Risk assessment is essential.

Finnie says "IoT has a lot of upsides, but you have to pay the piper on security. Investment is needed in a number of areas in your tech stack. Forrester names several IoT capabilities that may require funding, including IoT API, IoT authentication, IoT device hardening, IoT encryption, IoT network security, IoT network segmentation, IoT PKI, IoT security analytics and IoT threat detection."

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

February 27, 2018 11:18 AM

Scoop.it!

From internetofthingsagenda.techtarget.com - February 27, 2018 11:13 AM

Judy Curtis / SIPR's insight:

The dramatic growth of IoT-based malware families illustrates the incredibly prolific nature of this threat. The “proliferate to penetrate” strategy isn’t new, but it’s another reminder that single-point, signature-based anti-malware simply cannot handle the volume, velocity and variety of modern malware.

For greater protection of networks and data, organizations need to integrate malware defenses capable of detecting known and unknown threats across multiple layers of today’s distributed and dynamic network environment, from endpoints to the core and out to the cloud.

No comment yet.

Sign up to comment

Scooped by Judy Curtis / SIPR

February 14, 2018 10:27 PM

Scoop.it!

Two startups and two approaches to IoT security | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From staceyoniot.com - January 31, 2018 9:00 AM

Judy Curtis / SIPR's insight:

Stacey Higginbotham writes about the ongoing challenge of security for the Internet of Things: "... it’s easy to see that securing the IoT isn’t just a one-step process. Many different solutions will have to be cobbled together to build up a sense of security. On the manufacturing side, we’re going to need better implementations from the get-go, and constant watchfulness to address vulnerabilities. For the buyers and users of that equipment, the burden is still high. They’ll have to keep an eye on what these connected devices are doing, no matter how secure they claim to be."

No comment yet.

Sign up to comment

Rescooped by Judy Curtis / SIPR from Smart Cities & The Internet of Things (IoT)

February 14, 2018 5:48 PM

Scoop.it!

IoT needs to be secured by the network | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.networkworld.com - November 19, 2017 7:00 PM

No comment yet.

Sign up to comment

Rescooped by Judy Curtis / SIPR from Smart Cities & The Internet of Things (IoT)

February 14, 2018 5:47 PM

Scoop.it!

IoT Security in an Age of Insecurity | IoT For All | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.iotforall.com - January 2, 2018 2:00 PM

Judy Curtis / SIPR's insight:

Discussions about the Internet of Things (IoT) often focus on a “Security vs. Privacy” paradigm. However, last month author Susan Landau emphasized instead that discussions should focus on “Security vs. Security” at a New America event titled Listening In: Cybersecurity in an Insecure Age. In her same-titled book, Landau’s historical perspective, legislative knowledge, and cyberattack descriptions make a convincing case for the need to secure our data. She describes how security has matured slowly leading up to today’s strong-encryption found in corporate, government, and military environments.

Judy Curtis / SIPR's curator insight, January 4, 2018 8:56 PM

Discussions about the Internet of Things (IoT) often focus on a “Security vs. Privacy” paradigm. However, last month author Susan Landau emphasized instead that discussions should focus on “Security vs. Security” at a New America event titled Listening In: Cybersecurity in an Insecure Age.

In her same-titled book, Landau’s historical perspective, legislative knowledge, and cyberattack descriptions make a convincing case for the need to secure our data.

She describes how security has matured slowly leading up to today’s strong-encryption found in corporate, government, and military environments.

1

Sign up to comment

Scooped by Judy Curtis / SIPR

February 14, 2018 5:42 PM

Scoop.it!

Bad Botnet Growth Skyrockets in 2017 | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.infosecurity-magazine.com - January 10, 2018 2:00 PM

Judy Curtis / SIPR's insight:

Botnet C&C controllers are used by cybercriminals to send out spam and ransomware, launch distributed denial of service (DDoS) attacks, commit e-banking fraud or click fraud or mine cryptocurrencies such as Bitcoin and Monero. With the rise of the internet of things (IoT)–enslaved class of devices, such as smart thermostats, webcams or network attached storage devices (NAS), controller palettes have continued to get more diverse – and numerous. In fact, the number of IoT botnet controllers alone more than doubled from 393 in 2016 to 943 in 2017.

No comment yet.

Sign up to comment

Rescooped by Judy Curtis / SIPR from Smart Cities & The Internet of Things (IoT)

February 14, 2018 5:36 PM

Scoop.it!

A New Way to Track Down Bugs Could Help Save IoT | Security & the Internet of Things: IoT, OT, IIoT | Scoop.it

From www.wired.com - January 23, 2018 4:18 AM

Judy Curtis / SIPR's insight:

The threat of automated IoT vulnerability finders is a genuine concern. "Absolutely it is coming," says Anders Fogh, a malware analyst for the German security firm GData. "We are waiting for the vendors to realize that security is relevant. They need a dose of bitter medicine." Other researchers are beginning to work on large scale IoT firmware analysis and automatic n-day mining projects as well, acknowledging a future in which attackers can fully exploit IoT vulnerability.

Judy Curtis / SIPR's curator insight, January 23, 2018 9:09 PM

The threat of automated IoT vulnerability finders is a genuine concern. "Absolutely it is coming," says Anders Fogh, a malware analyst for the German security firm GData. "We are waiting for the vendors to realize that security is relevant. They need a dose of bitter medicine." Other researchers are beginning to work on large scale IoT firmware analysis and automatic n-day mining projects as well, acknowledging a future in which attackers can fully exploit IoT vulnerability.

Sign up to comment