QUESTION The Information Technology industry is a rapidly evolving space, and it is essential for professionals to stay up to date with the latest trends in order to remain competitive. The Information Technology industry is ever-evolving, and so are the skills and technologies that are in high demand. In the current Information Technology (IT) industry, …
IoT
Updated on 2022-12-22 The Zerobot botnet got an upgrade and now infects devices by abusing bugs in unpatched and internet-exposed Apache servers. Updated on 2022-12-21 After a Fortinet report last week, Microsoft has also put out a report on the new Zerobot IoT DDoS botnet. The original report found that Zerobot was written in Go, …
Updated on 2022-12-05: GAO report on IoT/OT security A GAO report published last week found that US government departments have paid little to no attention to the types and security of their internet-connected devices. What else is new? The report has several recommendations for the Department of Energy, the Department of Homeland Security, and the …
Updated on 2022-12-07 Chinese security firm Antiy has confirmed the use of the Torii botnet by Vietnamese APT group OceanLotus. Last month, both Weibu and QiAnXin said that OceanLotus operators appear to be using the Torii IoT botnet to disguise the origin of their attacks. Updated on 2022-11-15: OceanLotus attacks Chinese security firm QiAnXin published …
Starting next month, US federal agencies will be required to implement Internet of Things (IoT) cybersecurity guidelines developed by the National Institute of Standards and Technology (NIST). The IoT Cybersecurity Act of 2020 directed NIST to create a series of documents to address the needs of federal agencies seeking to deploy IoT devices within their …
Updated on 2022-10-20: Singapore and Germany Reach IoT Labeling Agreement Singapore and Germany have signed an agreement to recognize each other’s Internet of Things (IoT) security labels. Singapore’s Cyber Security Agency (CSA) reached a similar agreement with Finland last autumn. CSA has recently expanded its labeling scheme to included medical devices. Note As we know …
On September 28, the Connectivity Standards Alliance released the specification for the smart home standard Matter 1.0. “The Matter specification defines fundamental requirements to enable an interoperable application layer solution for smart home devices over the Internet Protocol.” Matter allows communication between devices on the local network, and it is encrypted. Note While there seems …
Researchers from Bitdefender have detected multiple vulnerabilities in EZVIZ smart cameras. Three of the flaws – a stack-based buffer overflow vulnerability, an insecure direct object reference vulnerability, and a strong passwords in a recoverable format vulnerability – can be exploited remotely. A fourth flaw – an improper initialization vulnerability – is locally exploitable. The flaws …
Researchers from AT&T’s Alien Labs have detected malware that targets endpoints and Internet of Things (IoT) devices running Linux. The malware, which is being called “Shikitega is delivered in a multistage infection chain where each module responds to a part of the payload and downloads and executes the next one.” Shikitega could be exploited to …
When companies approach IoT products, too often, they dive directly into product development without taking the necessary steps to ensure success. They usually start by focusing on technology instead of understanding their customers’ needs. This technology-first approach is a mistake and leads to building products nobody wants.