Security News

With so many IoT devices in use today, security is a major issue. "The introduction of IoT into the trucking industry also brought risk into logistics and supply chains," said Sharon Reynolds, CISO at Omnitracs, which provides fleet management solutions.

Secure World is part of Microsoft's operating environment for applications that run on Azure Sphere devices that executes Microsoft security code. "Sylvie Liu, security program manager for Microsoft Security Response Center, said:"While Azure Sphere implements security upfront and by default, Microsoft recognizes security is not a one-and-done event.

Microsoft has launched a bug-bounty program for its Azure Sphere offering, which is a security suite for the internet of things that encompasses hardware, OS and cloud elements. Microsoft is offering various resources to program participants, including the Azure Sphere development kit; product documentation; direct communication channels with the Microsoft team; and other Microsoft products and services if needed.

A recently identified botnet built using the Golang programming language is targeting Linux systems, including Internet of Things devices, using a custom implant, Intezer reports. The botnet, which security researcher MalwareMustDie named Kaiji, is of Chinese origin and spreads exclusively via SSH brute force attacks, targeting the root user only.

A new botnet has been infecting internet of things devices and Linux-based servers, to then leverage them in distributed denial-of-service attacks. The malware, dubbed Kaiji, has been written from scratch, which researchers say is "Rare in the IoT botnet landscape" today.

Insight Enterprises, the global integrator of Insight Intelligent Technology Solutions for organizations of all sizes, announced the launch of Insight Connected Platform, a scalable Internet of Things foundation that accelerates the creation of smart spaces within any environment, be it stores, restaurants, manufacturing plants, hospitals and even entire cities. Insight Connected Platform is designed to reduce security risks, propel efficiency and enable faster deployment by unifying how organizations use IoT solutions.

The Zigbee Alliance, an organization of hundreds of companies creating, maintaining, and delivering open, global standards for the Internet of Things, and the Digital Illumination Interface Alliance, the global industry organization for DALI lighting control, announced they are working together to bring further standardization and system interoperability to the IoT luminaires space. This development will help stakeholders realize the benefits of combining wired DALI lighting-control systems with wireless Zigbee networks as the IoT progresses.

Sectigo, a leading provider of automated digital identity management and web security solutions, announced a partnership with Infineon Technologies AG to provide automated certificate provisioning for Infineon's OPTIGA Trusted Platform Module 2.0 using Sectigo IoT Identity Manager. "Including a TPM chip in an IoT device design is the first step in enabling strong authentication and secure communication for IoT devices," explained Alan Grau, VP of IoT/Embedded Solutions at Sectigo.

Ingram Micro announced it is expanding the company's global go-to-market capabilities and portfolio around Internet of Things-establishing a Global Center of Excellence under the leadership of Ingram Micro Vice President Sabine Howest and placing more emphasis on key verticals, services and solutions to aid channel partners and manufacturers in accelerating IoT market adoption. "The introduction of a Global Center of Excellence will smooth and accelerate the road-to-market for our channel partners and manufacturers specializing in IoT, and pave the way for us to share best practices, new market applications, and resources globally," says Paul Bay, executive vice president and president of Global Technology Solutions, Ingram Micro.

The Information Security Forum predicts the coming threats with a very good track record so far. The ideal choice would be to find someone who can predict future threats and to prepare for them in the present.