Security News
HD-PLC Alliance has started standardization work that will allow the use of enhanced network security functions, with the aim of using High-Definition Power Line Communication technology in the fields of smart grids and distributed power management. The IEEE Standards Association established a new project called IEEE P1901b in September this year to create specifications for this purpose, and held the first working group meeting this month.
Matt Lewis, with NCC Group, talks to Threatpost about a slew of security and privacy issues found in smart doorbells that are being sold on Amazon and eBay. Researchers have found serious security and privacy issues in 11 different smart doorbells, distributed via online marketplaces like Amazon and eBay, which could be exploited by attackers to physically switch off the devices.
Microsoft Edge is now testing a new feature that lets you copy tabular data and groups of items into the Windows clipboard for easy pasting into other apps. In the Microsoft Edge Canary builds, you can now enable the Smart Copy feature using the 'CTRL+Shift+X' keyboard combination.
Microsoft Edge is now testing a new feature that lets you copy tabular data and groups of items into the Windows clipboard for easy pasting into other apps. In the Microsoft Edge Canary builds, you can now enable the Smart Copy feature using the 'CTRL+Shift+X' keyboard combination.
More than 100 smart-irrigation systems deployed across the globe were installed without changing the factory's default, passwordless setting, leaving them vulnerable to malicious attacks, according to recent findings from Israeli security research firm Security Joes. Recently, its researchers discovered that 55 irrigation systems within Israel were visible on the open internet without password protections.
The streaming box allows arbitrary code execution as root, paving the way to pilfering social-media tokens, passwords, messaging history and more. A critical bug in the Hindotech HK1 TV Box would allow root-privilege escalation thanks to improper access control.
The maker of a 'smart' male chastity device has recommended using a screwdriver to break them open after warnings they can be locked remotely by hackers. Chinese firm Qiui, whose Bluetooth-controlled Cellmate device can only be unlocked via an app, issued a video called "When nothing else works", showing the screwdriver fix.
A security flaw in an internet-connected male chastity device could allow hackers to remotely lock it - leaving users trapped, researchers have warned. The locking mechanism is controlled with a smartphone app via Bluetooth - marketed as both an anti-cheating and a submission sex play device - but security researchers have found multiple flaws that leave it vulnerable to hacking.
Samsung brags to advertisers that "First screen ads", seen by all users of its Smart TVs when they turn on, are 100 per cent viewable, audience targeted, and seen 400 times per TV per month. "Dear Samsung, why are you showing Ads on my Smart TV without my consent? I didn't agree to this in the privacy settings but I keep on getting this, why?" said a user on Samsung's TV forum, adding last week that "There is no mention of advertising on any of their brand new boxes".
Phunware announced that Cisco Meraki will now feature the Company's Smart Workplace solution for employers in its Meraki Marketplace. Cisco Systems acquired Meraki in 2012, and today, Cisco Meraki is a leader in cloud controlled WiFi, routing and security, all managed from a centralized dashboard.