Security News

Microsoft this week announced Secured-core Server and Edge Secured-core, two solutions aimed at improving the security of servers and connected devices. Initially announced in 2019, Secured-core is the result of a partnership between Microsoft and hardware manufacturers, and its goal is to add a security layer that combines identity, virtualization, operating system, hardware and firmware protection capabilities.

Advances in IoT devices have changed the scope of what is possible in the realm of home automation; high-end control systems once costing hundreds of thousands of dollars can be put together with IoT components for a fraction of the cost. The Quantum Integration IoT platform is making the world of automation more accessible for everyone through specifically engineered hardware and software designed to allow anyone with the passion for making to build their own fully functional IoT network without any coding knowledge.

Sequitur Labs announced new packages for the EmSPARK Security Suite that allows manufacturers to secure embedded designs for industrial, consumer, smart home and health care applications quickly and painlessly. The EmSPARK Security Suite Base package provides essential security defenses for IoT applications in a turnkey solution that is easy to install, integrate and manage.

ZEDEDA announced an integration with Microsoft Azure IoT services that provides customers with full lifecycle management capabilities, single-click bulk provisioning, risk-free updates and a built-in app marketplace. "With scale and security, they can instantly deploy all Azure IoT Edge services on large fleets of nodes with a single click and manage the full lifecycle of both the software and hardware."

Daycare camera product NurseryCam was hacked late last week with the person behind the digital break-in coming forward to tip us off. News of NurseryCam's compromise was conveyed to the company by The Register just after 5pm on Friday, leading the firm to tell parents: "On 17:18 Friday 19th February 2021, it has come to our attention of a cyber incident detected in our NurseryCam system."

Google Cloud and Sigfox announced that the leading global 0G network and IoT platform services provider, has partnered with Google Cloud, to scale its cloud infrastructure and extend its IoT services portfolio. Google Cloud will also enable faster improvements to Sigfox's connectivity, geolocation, and other value-added services towards ultra-low-cost and ultra-low-power IoT solutions.

Forescout researchers have discovered nine vulnerabilities affecting nine different TCP/IP stacks widely used in IoT and OT devices. The vulnerabilities are due to weak Initial Sequence Number generation, and could be exploited to mount limited DoS attacks against the vulnerable devices, to inject malicious data on a device, or to bypass authentication.

CloudLinux announced that its KernelCare service now supports the Raspberry Pi platform providing live patching for the running kernel with zero downtime - improving security for IoT deployments. KernelCare for Raspberry Pi is a free service ensuring that IoT devices and assemblies are automatically updated and always available.

Enterprise IoT security company Armis on Wednesday announced another major funding round that brings its valuation to $2 billion. Armis said it raised $125 million in the latest round, which brings the total investment secured by the company to $300 million.

CloudLinux has added the Raspberry Pi to its KernelCare patching service, although only if you're running Ubuntu. The arrival of the service is a recognition of the diminutive computer's presence in the IoT world, where implementations tend to be more on the appliance side and ongoing security updates are not always applied.