Nozomi Networks is warning about the first ransomware specifically designed to exploit vulnerabilities in OT systems. It has detailed its warnings in its OT/IoT Security Report, saying: “During the first half of 2020 we saw the first ransomware targeting industrial automation software (SNAKE/EKANS) that moved laterally within the victim network to search for valuable data […]
Security of industrial IoT “at a tipping point”
A new report has painted a gloomy picture of the security of industrial IoT (IIoT), and the prospects for improvement. The report, Foresight review of cyber security for the Industrial IoT, from Lloyd’s Register Foundation, a not-for-profit created by Lloyd’s Register, says the current pace of change in operational security capabilities will not match the […]
US call for distributors to enforce IoT security standards
The Atlantic Council of the US is calling for technology distributors to enforce IoT security standards for all products they source from overseas manufacturers. The proposal from the council — which bills itself as “a nonpartisan organisation that promotes constructive US leadership and engagement in international affairs” — is contained in a new report: The […]
Laying down the law on security for consumer IoT
The IoT Alliance Australia (IoTAA) is against mandating security for consumer IoT devices. The UK plans to do just that, with good reason. In November I reported that Australia’s Home Affairs minister, Peter Dutton, had released a for-comment draft of a code of practice that closely follows a voluntary code introduced by the UK Government […]
Beware BYO IoT, says Zscaler
Zscaler, a provider of cloud based security for enterprises, has released its second annual IoT report, evoking a strong sense of déjà vu: a decade or so ago, following the emergence of smartphones that could do much more than make calls, the bring-your-own device (BYOD) phenomenon where employees used these for work purposes caused many […]
UK to legislate security for consumer IoT devices
The UK Government is to introduce legislation that, it says, will impose three rigorous security requirements on all consumer IoT devices. Specifically these are: All consumer internet-connected device passwords must be unique and not resettable to any universal factory setting; Manufacturers of consumer IoT devices must provide a public point of contact so anyone can […]
Cisco’s new IoT security offering spans OT and IT networks
Cisco has launched, at its EMEA Cisco Live! in Barcelona, an IoT security suite designed to provide visibility and analytics across IT and OT networks. Cisco says it has removed the complexity of a multi-vendor, multi-data, and multi-asset infrastructure to create simple IoT cyber security solutions that can be managed on any of Cisco’s gateways, […]
Voluntary security assessment for consumer IoT devices
The UK’s IoT Security Foundation has formed a partnership with the IAMSE Consortium to develop a vendor self-assessment scheme for the security of consumer IoT products for the UK market. It says the scheme will provide a baseline which is both low cost and simple to implement for manufacturers. IASME has worked with the IoT […]
Kaspersky honeypots harvest 100 million IoT attacks
Kaspersky says its networked virtual copies of various IoT devices and applications have detected 105 million attacks in the first six months of 2019, a 12 fold increase on H1 2018. According to Kaspersky many people and organisations consider it unnecessary to protect these devices, but cyber criminals see financial opportunities in exploiting such gadgets […]
Dumbing down smart devices changes the way we see IoT
Artificial intelligence, machine learning and the internet of things have been hot topics for any digital transformation discussion in recent years. It’s no surprise. The IT industry is obsessed with what the future has in store. As technologists, it’s important to continue to drive conversations about where the industry is going and what the next […]
