Reality Check: Getting Serious About IoT Security
12/5/2016The Department of Homeland Security is fully justified in urging security standards for the Internet of Things.
Post a Comment
Author
Profile of Troy Dearing
Senior Ethical Hacker News & Commentary Posts: 1Troy Dearing (Gunnery Sergeant, Retired) joined Armor as a senior ethical hacker, bringing 20 years of expertise in IT and cybersecurity to the Threat Resistant Unit (TRU). Before joining Armor, Troy was a computer network operator for the NSA, where he was tasked with performing computer network exploitation operations. For 20 years he served the Marine Corps with distinction as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA's Red Team which established his foundation in cybersecurity expertise.
Troy hails from the great state of Arizona. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).
Articles by Troy Dearing
The Department of Homeland Security is fully justified in urging security standards for the Internet of Things.
Post a Comment
White Papers
Video
0 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: I'll need you to first enable Android's option to install programs from unknown sources.
Latest Comment: I'll need you to first enable Android's option to install programs from unknown sources.
Current Issue
Flash Poll
The State of IT and Cybersecurity
IT and security are often viewed as different disciplines - and different departments. Find out what our survey data revealed, read the report today!
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-3783
PUBLISHED: 2018-08-17
PUBLISHED: 2018-08-17
PUBLISHED: 2018-08-17
PUBLISHED: 2018-08-17
PUBLISHED: 2018-08-17
From DHS/US-CERT's National Vulnerability Database CVE-2018-3783
PUBLISHED: 2018-08-17
A privilege escalation detected in flintcms versions <= 1.1.9 allows account takeover due to blind MongoDB injection in password reset.
CVE-2018-3784PUBLISHED: 2018-08-17
A code injection in cryo 0.0.6 allows an attacker to arbitrarily execute code due to insecure implementation of deserialization.
CVE-2018-3785PUBLISHED: 2018-08-17
A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.
CVE-2018-10873PUBLISHED: 2018-08-17
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially,...
CVE-2018-5546PUBLISHED: 2018-08-17
The svpn and policyserver components of the F5 BIG-IP APM client prior to version 7.1.7.1 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host. A malicious local unprivileged user may gain knowledge of se...
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This