Security News

Massive Android Botnet Hits Smart TV Ad Ecosystem
2021-04-22 00:16

Security researchers at Human Security have discovered a massive botnet of Android devices being used to conduct fraud in the connected TV advertising ecosystem. The sophisticated mobile botnet, dubbed Pareto, is made up on nearly a million infected mobile Android devices pretending to be millions of people watching ads on smart TVs and other devices.

Lack of IT-OT collaboration holding back smart factory security projects
2021-03-31 04:30

61% of manufacturers have experienced cybersecurity incidents in their smart factories and are struggling to deploy the technology needed to effectively manage cyber risk, according to a Vanson Bourne survey of 500 IT and OT professionals in the United States, Germany and Japan. "Manufacturing organizations around the world are doubling down on digital transformation to drive smart factory improvements. The gap in IT and OT cybersecurity awareness creates the imbalance between people, process and technology, and it gives bad guys a chance to attack." said Akihiko Omikawa, executive VP of IoT security for Trend Micro.

SMART Modular expands its DuraFlash ME2 SATA SSD portfolio with M.2 2242, mSATA and Slim SATA
2021-03-26 01:30

"SMART Modular has expanded its DuraFlash ME2 SATA SSD product family with the addition of M.2 2242 SATA, mSATA and Slim SATA that complement the current M.2 2280 and 2.5" SSD form factors in SMART's DuraFlash portfolio. The new ME2 SATA SSD form factors are ideal for embedded computing, transportation, medical and industrial applications that require either smaller or legacy SSD form factors.

Smart doorbells on business premises make your property more attractive to burglars, warns researcher
2021-03-15 20:07

Installing a smart doorbell on your abode could actually increase your home's attractiveness to burglars, researchers from Britain's Cranfield University have said. Instead, he said in a summary of a research paper published on the Centre for Research and Evidence on Security Threats' website, smart doorbells and smart locks could actually make things worse.

Critical Security Hole Can Knock Smart Meters Offline
2021-03-12 21:42

Critical security vulnerabilities in Schneider Electric smart meters could allow an attacker a path to remote code execution, or to reboot the meter causing a denial-of-service condition on the device. Schneider Electric's PowerLogic ION/PM smart meter product line, like other smart meters, is used by consumers in their homes, but also by utility companies that deploy these meters in order to monitor and bill customers for their services.

Smart sex toys come with Bluetooth and remote hijacking weaknesses
2021-03-11 18:45

Today, researchers have exposed common weaknesses lurking in the latest smart sex toys that can be exploited by attackers. In examples provided by the researchers, technologies like Bluetooth and inadequately secured remote APIs make these IoT personal devices vulnerable to attacks that go beyond just compromising user privacy.

Smart sex toys come with Bluetooth and remote access weaknesses
2021-03-11 18:45

Today, researchers have exposed common weaknesses lurking in the latest smart sex toys that can be exploited by attackers. In examples provided by the researchers, technologies like Bluetooth and inadequately secured remote APIs make these IoT personal devices vulnerable to attacks that go beyond just compromising user privacy.

uCIFI Alliance releases unified data model for smart city and utility devices
2021-03-01 02:00

The uCIFI Alliance announced the public release of the first unified data model to provide interoperability and interchangeability between connected devices to unlock smart cities, reduce cost and guarantee investments' sustainability. The open-source model targets key smart-city applications such as streetlighting, water metering and distribution monitoring, waste management, parking, traffic monitoring, air-quality monitoring, smart buildings, as well as safety and security.

Nespresso Smart Cards Brewed with Weak Security
2021-02-04 19:26

Researchers have demonstrated how to outsmart Nespresso Pro machines that use certain smart cards, hacking them to dispense coffee on-demand. Some of the commercial machines accept Mifare Classic stored-value smart cards, which allow users to load money onto the cards to use in the machines.

Nespresso smart cards hacked to provide infinite coffee after someone wasn't too perky about security
2021-02-04 06:40

Some commercial Nespresso machines in Europe that incorporate a smart card payment system can be manipulated to add unlimited funds to purchase coffee, thanks to reliance on technology that's been known to be insecure for more than a decade. In a coordinated vulnerability disclosure published this week, Polle Vanhoof, a security researcher, describes a vulnerability affecting unspecified Nespresso Pro machines equipped with a smart card reader: the problem? Some rely on outdated Mifare Classic smart cards.