Security News

Awake Security, the network detection and response security division of Arista Networks unveiled platform enhancements that strengthen its ability to detect advanced threats, protect the unmanaged attack surface and autonomously perform threat hunting and forensic investigations. Awake's NDR platform is a key pillar of Arista's vision for zero trust security.

Microsoft this week announced Secured-core Server and Edge Secured-core, two solutions aimed at improving the security of servers and connected devices. Initially announced in 2019, Secured-core is the result of a partnership between Microsoft and hardware manufacturers, and its goal is to add a security layer that combines identity, virtualization, operating system, hardware and firmware protection capabilities.

Advances in IoT devices have changed the scope of what is possible in the realm of home automation; high-end control systems once costing hundreds of thousands of dollars can be put together with IoT components for a fraction of the cost. The Quantum Integration IoT platform is making the world of automation more accessible for everyone through specifically engineered hardware and software designed to allow anyone with the passion for making to build their own fully functional IoT network without any coding knowledge.

Sequitur Labs announced new packages for the EmSPARK Security Suite that allows manufacturers to secure embedded designs for industrial, consumer, smart home and health care applications quickly and painlessly. The EmSPARK Security Suite Base package provides essential security defenses for IoT applications in a turnkey solution that is easy to install, integrate and manage.

ZEDEDA announced an integration with Microsoft Azure IoT services that provides customers with full lifecycle management capabilities, single-click bulk provisioning, risk-free updates and a built-in app marketplace. "With scale and security, they can instantly deploy all Azure IoT Edge services on large fleets of nodes with a single click and manage the full lifecycle of both the software and hardware."

Daycare camera product NurseryCam was hacked late last week with the person behind the digital break-in coming forward to tip us off. News of NurseryCam's compromise was conveyed to the company by The Register just after 5pm on Friday, leading the firm to tell parents: "On 17:18 Friday 19th February 2021, it has come to our attention of a cyber incident detected in our NurseryCam system."

Google Cloud and Sigfox announced that the leading global 0G network and IoT platform services provider, has partnered with Google Cloud, to scale its cloud infrastructure and extend its IoT services portfolio. Google Cloud will also enable faster improvements to Sigfox's connectivity, geolocation, and other value-added services towards ultra-low-cost and ultra-low-power IoT solutions.

Forescout researchers have discovered nine vulnerabilities affecting nine different TCP/IP stacks widely used in IoT and OT devices. The vulnerabilities are due to weak Initial Sequence Number generation, and could be exploited to mount limited DoS attacks against the vulnerable devices, to inject malicious data on a device, or to bypass authentication.

CloudLinux announced that its KernelCare service now supports the Raspberry Pi platform providing live patching for the running kernel with zero downtime - improving security for IoT deployments. KernelCare for Raspberry Pi is a free service ensuring that IoT devices and assemblies are automatically updated and always available.

Enterprise IoT security company Armis on Wednesday announced another major funding round that brings its valuation to $2 billion. Armis said it raised $125 million in the latest round, which brings the total investment secured by the company to $300 million.