5-6-19 – News This Past Week

Hacking our way into cybersecurity for medical devices
Hospitals are filled with machines connected to the internet. With a combination of both wired and wireless connectivity, knowing and managing which devices are connected has become more complicated and, consequently, the institutions’ attack surface has expanded

Hacking our way into cybersecurity for medical devices

People Are Clamoring to Buy Old Insulin Pumps
How an obsolete medical device with a security flaw became a must-have for some patients with type 1 diabetes
https://www.theatlantic.com/science/archive/2019/04/looping-created-insulin-pump-underground-market/588091/

Plan to secure internet of things with new law
Security vulnerabilities that could be targeted by hackers have been found in everything from toy dolls to internet-connected ovens in recent years
https://www.bbc.com/news/technology-48106582

Two Vulnerabilities Expose Rockwell Controllers to DoS Attacks
Two vulnerabilities discovered by industrial cybersecurity companies CyberX and Nozomi Networks in some of Rockwell Automation’s controllers expose devices to denial-of-service (DoS) attacks
https://www.securityweek.com/two-vulnerabilities-expose-rockwell-controllers-dos-attacks

‘Denial of service condition’ disrupted US energy company operations
An energy company providing power in several western U.S. states experienced a “denial-of-service condition” serious enough to warrant reporting it to the government’s energy authority.

‘Denial of service condition’ disrupted US energy company operations

UK Publishes Proposed Regulation for IoT Device Security
The UK government has published a consultation document on the proposed regulation of consumer IoT devices. The consultation is not designed to see whether regulation is necessary, but to help the government “make a decision on which measures to take forward into legislation.”
https://www.securityweek.com/uk-publishes-proposed-regulation-iot-device-security

Security lapse exposed a Chinese smart city surveillance system
Security researcher John Wethington found a smart city database accessible from a web browser without a password. He passed details of the database to TechCrunch in an effort to get the data secured

Security lapse exposed a Chinese smart city surveillance system

Posted in Uncategorized.