News This Past Week

Siemens Patches Flaws in Automation, Power Distribution Products
Siemens customers were informed last week that some of the company’s automation and power distribution products are affected by vulnerabilities that can be exploited for denial-of-service (DoS) attacks and session hijacking
http://www.securityweek.com/siemens-patches-flaws-automation-power-distribution-products

30 ways to improve IoT privacy
To improve IoT security and privacy, we need to create a security culture. Here are 30 ways IoT device makers and developers can do their part.
https://www.networkworld.com/article/3221474/internet-of-things/30-ways-to-improve-iot-privacy.html

This Linux tool could improve the security of IoT devices
Snappy, a software deployment and management system designed by Canonical for the Ubuntu operating system, could be a shortcut to building trusted IoT applications
https://www.networkworld.com/article/3219725/internet-of-things/this-linux-tool-could-improve-the-security-of-iot-devices.html

UK infrastructure failing to meet the most basic cybersecurity standards
More than a third of national critical infrastructure organisations have not met basic cybersecurity standards issued by the UK government, according to Freedom of Information requests by Corero Network Security
https://www.theregister.co.uk/2017/08/29/critical_national_infrastructure_cybersecurity/

Need to Jumpstart IoT Security? Consider Segmentation
In the healthcare industry, medical devices connecting patients, care givers, and systems across facilities are being used to save lives and find cures. Manufacturers embarking on their digital transformation journey are connecting devices on the factory floor to increase uptime, productivity, and competitive advantage
http://www.securityweek.com/need-jumpstart-iot-security-consider-segmentation

FDA issues recall of 465,000 St. Jude pacemakers to patch security holes
Heart patients will have to visit their doctors to have their pacemakers patched for the “voluntary” recall — but there are risks
http://www.zdnet.com/article/fda-forces-st-jude-pacemaker-recall-to-patch-security-vulnerabilities/

Advantech fixes serious vulns in WebAccess HMI/SCADA software
Advantech WebAccess is a web browser-based software package for human-machine interfaces (HMI) and supervisory control and data acquisition (SCADA).

Advantech fixes serious vulns in WebAccess HMI/SCADA software

IoT Device Hit by Credential Attack Every Two Minutes: Experiment
Internet of Things (IoT) botnets such as Mirai might not be in the headlines as often as they were several months ago, but the threat posed by insecure IoT devices is as high as before, a recent experiment has revealed
http://www.securityweek.com/iot-device-hit-credential-attack-every-two-minutes-experiment

Posted in Uncategorized.