27 Jul '16, 4pm

Even reputable companies can have IoT security flaws

Even reputable companies can have IoT security flaws

“Practical exploitation effects ranging from the accidental disclosure of sensitive network configuration information, to persistent cross-site scripting [XSS] on the web management console, to operational command execution on the devices themselves without authentication,” said Rapid7, whose lead researcher Deral Heiland discovered the issues. The issues are described as: Cleartext WPA2 PSK Lack of SSL Pinning Pre-Authentication Command Execution ZigBee Network Command Replay Web Management Console Persistent XSS Weak Default WPA2 PSKs Lack of SSL Pinning ZigBee Network Command Replay Cached Screenshot Information Leak Rapid 7 points out that Osram’s latest patch set fixed “all but the lack of SSL pinning and the issues related to ZigBee re-keying”. Further details are available on Rapid7’s website .

Full article: http://www.electronicsweekly.com/news/even-reputable-comp...

Tweets

Building the IoT – Connectivity and Security -

edn.com 25 Jul '16, 11am

In my prior blog, Building the IoT: standards and hardware needs , I discussed how the "things," device hardware and their...

Can CEOs Really Make Companies More Sustainable?

Can CEOs Really Make Companies More Sustainable?

triplepundit.com 27 Jul '16, 9am

Last month GM Chairman and CEO Mary Barra delivered a commencement address at the Stanford Graduate School of Business. GM...

IoT take up increases, but security concerns linger

IoT take up increases, but security concerns li...

newelectronics.co.uk 25 Jul '16, 8am

Erik Brenneis, pictured, director, IoT, for Vodafone, said: “What matters now is not whether a business should adopt IoT, ...

TransferWise Blocks Money Transfers To Bitcoin Companies - The Merkle

TransferWise Blocks Money Transfers To Bitcoin ...

themerkle.com 27 Jul '16, 4pm

It is not the first money transfers to Bitcoin-related services are blocked by financial institutions. However, it is the ...

ベタにシンガポール会社法 https://t.co/wgbxUPmAIp

statutes.agc.gov.sg 31 Jul '16, 11am

—(1) The written laws mentioned in the First Schedule to the extent to which they are therein expressed to be repealed or ...

Food Delivery Is The Lifesaver Of F&B In Singap...

vulcanpost.com 27 Jul '16, 7am

The rise of food delivery demand has brought about the corresponding rise in service providers, many of whom engage in ser...

ARM aims to build trust in IoT security: With billions of wireless devices expected to be connected to the i...

ARM aims to build trust in IoT security: With b...

electronicsweekly.com 21 Jul '16, 10am

As a result the companies have collaborated on the Open Trust Protocol (OTrP) to combine a secure architecture with truste...

Case Study: Why Systems Security Company Nexusguard Chooses Bitcoin

Case Study: Why Systems Security Company Nexusg...

bitcoinmagazine.com 27 Jul '16, 3pm

In October 2015, Nexusguard , a systems security company that specializes in DDoS defense, started accepting bitcoin as a ...

The Value of an Integrated Sustainability Strat...

The 2016 installment of the U.S. Department of Energy (DOE) Better Building Summit was full of friends and leaders from ac...

The Value of an Integrated Sustainability Strat...

The 2016 installment of the U.S. Department of Energy (DOE) Better Building Summit was full of friends and leaders from ac...

Petition Calls on @EPA to Require #Pesticide Co...

biologicaldiversity.org 28 Jul '16, 4pm

For Immediate Release, July 28, 2016 Contact: Lori Ann Burd, (971) 717-6405, [email protected] Petition Calls...

Autonomous Cars Pose New Security Challenges

luxuo.com 25 Jul '16, 9pm

With the slew of attacks that have been taken place around the world in recent weeks, officials in the auto industry have ...

Root on the Philips Hue IoT Bridge

hackaday.com 26 Jul '16, 3pm

Building on the work of others (as is always the case!) [pepe2k] managed to get root access on the Philips Hue Bridge v2 I...

Sensor to cloud developer kit accelerates IoT design @siliconlabs

Sensor to cloud developer kit accelerates IoT d...

newelectronics.co.uk 26 Jul '16, 8am

“Thunderboard React, along with our free firmware and source code, provides developers and makers with an easy way to eval...

#IoT

eetimes.com 25 Jul '16, 8pm

Intelligent power generation: Using multiple distributed sources like central power stations, wind and solar installations...