Comments
Get Serious about IoT Security
Newest First  |  Oldest First  |  Threaded View
ademarr
50%
50%
ademarr,
User Rank: Apprentice
9/27/2017 | 8:39:55 AM
CompTIA exam dumps
Braindumpskey's CompTIA modules are very simple and anyone can understand them easily. The company believes in details described in a brief way. The CAS-002 Dumps [https://www.braindumpskey.com/exam/CAS-002.html] practice modules are available as software, and as CAS-002 PDF [https://www.braindumpskey.com/exam/CAS-002.html] that's easy to read.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
9/20/2017 | 2:33:30 PM
Re: Of interest
Politics aside, good reason to disable that on a "pacemaker" --- my defib is a close cousin but not so much of a threat in that regard.  Still, shows the significance above on a wireless pacemarker as an IoT device used in important public people.  
cybersavior
50%
50%
cybersavior,
User Rank: Strategist
9/20/2017 | 2:19:53 PM
Re: Of interest
That is precisely why doctors disabled the wireless function in Dick Cheney's pacemaker.  To thwart hackers killing him.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
9/20/2017 | 1:50:59 PM
Of interest
I have a wireless defibulator inside of me - made by Boston Scientific.  Ir regularly posts condition status to a wireless receiver in my kitchen attached to a phone.  Seems simple enough but consider this as an IoT device, i wonder just what related data is transmitted and what can be associated with it upon reception.  One has to trust that somewhere in Emory Hospital the walls are rather well up (one never knows) but .,,,,, so long as a hacker does not turn me OFF????


Understanding Evil Twin AP Attacks and How to Prevent Them
Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies,  11/14/2018
Veterans Find New Roles in Enterprise Cybersecurity
Kelly Sheridan, Staff Editor, Dark Reading,  11/12/2018
To Click or Not to Click: The Answer Is Easy
Kowsik Guruswamy, Chief Technology Officer at Menlo Security,  11/14/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-19296
PUBLISHED: 2018-11-16
PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack.
CVE-2018-19301
PUBLISHED: 2018-11-15
tp4a TELEPORT 3.1.0 allows XSS via the login page because a crafted username is mishandled when an administrator later views the system log.
CVE-2018-5407
PUBLISHED: 2018-11-15
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
CVE-2018-14934
PUBLISHED: 2018-11-15
The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access Control. An attacker can connect without authentication and subsequently record audio from the device microphone.
CVE-2018-14935
PUBLISHED: 2018-11-15
The Web administration console on Polycom Trio devices with software before 5.5.4 has XSS.