IoT Security - Security Ticks

Vulnerability Allowed Eavesdropping via Sonos Smart Speakers

eavesdrop, IoT Security, Sonos, vulnerability / SecurityTicks

Vulnerability Allowed Eavesdropping via Sonos Smart Speakers 2024-08-09 at 12:16 By Eduard Kovacs Sonos has patched vulnerabilities in its smart speakers, including a serious flaw that could have been exploited to eavesdrop on users. The post Vulnerability Allowed Eavesdropping via Sonos Smart Speakers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Vulnerability Allowed Eavesdropping via Sonos Smart Speakers Read More »

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption

ICS, ICS/OT, IoT Security, power, Vulnerabilities, vulnerability / SecurityTicks

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption 2024-08-08 at 16:16 By Eduard Kovacs Vulnerabilities found in solar power systems could have been exploited by hackers to cause disruption and possibly blackouts. The post Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption Read More »

Spatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room With Spiders, Bats

apple, IoT Security, Vision Pro / SecurityTicks

Spatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room With Spiders, Bats 2024-06-21 at 16:32 By Eduard Kovacs A recently patched Vision Pro vulnerability was classified by Apple as a DoS issue, but a researcher has shown that it’s ‘scary’. The post Spatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room

React to this headline:

Spatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room With Spiders, Bats Read More »

Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’

apple, Featured, IoT Security, Vision Pro / SecurityTicks

Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’ 2024-06-11 at 17:01 By Eduard Kovacs Apple has released a visionOS update that patches CVE-2024-27812, which may be the first flaw specific to the VR headset. The post Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’ appeared

React to this headline:

Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’ Read More »

Dangerous Liaisons: The Interaction Between Threat Actors and High-Risk Devices

IoT, IoT Security / SecurityTicks

Dangerous Liaisons: The Interaction Between Threat Actors and High-Risk Devices 2024-06-11 at 15:16 By Kevin Townsend Forescout’s 2024 analysis of the riskiest devices highlights vulnerabilities and threat actor interactions across IT, IoT, OT, and IoMT. The post Dangerous Liaisons: The Interaction Between Threat Actors and High-Risk Devices appeared first on SecurityWeek. This article is an

React to this headline:

Dangerous Liaisons: The Interaction Between Threat Actors and High-Risk Devices Read More »

Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked

IoT, IoT Security, U.S. Cyber Trust Mark / SecurityTicks

Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked 2024-05-23 at 16:17 By Associated Press Under the new U.S. Cyber Trust Mark Initiative, manufacturers can affix the label on their products if they meet federal cybersecurity standards. The post Cybersecurity Labeling for Smart Devices Aims to Help People

React to this headline:

Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked Read More »

MITRE EMB3D Threat Model Officially Released

free tool, IoT Security, MITRE / SecurityTicks

MITRE EMB3D Threat Model Officially Released 2024-05-14 at 14:02 By Eduard Kovacs MITRE announced the public availability of the EMB3D threat model for embedded devices used in critical infrastructure. The post MITRE EMB3D Threat Model Officially Released appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

MITRE EMB3D Threat Model Officially Released Read More »

From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats

China, critical infrastructure, ICS/OT, IoT Security / SecurityTicks

From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats 2024-05-07 at 14:16 By Danelle Au As cyber threats grow more sophisticated, America cannot afford complacency. The time for decisive action and enhanced cyber resilience is now. The post From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats appeared first on SecurityWeek.

React to this headline:

From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats Read More »

Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars

D-Link, exploited, IoT Security, Vulnerabilities / SecurityTicks

Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars 2024-04-12 at 14:31 By Eduard Kovacs Second identifier, CVE-2024-3272, assigned to unpatched D-Link NAS device vulnerabilities, just as exploitation attempts soar. The post Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars Read More »

Thousands of LG TVs Possibly Exposed to Remote Hacking

IoT, IoT Security, TV / SecurityTicks

Thousands of LG TVs Possibly Exposed to Remote Hacking 2024-04-10 at 15:38 By Eduard Kovacs Many LG TVs may be vulnerable to remote hacking due to a series of vulnerabilities found by Bitdefender researchers. The post Thousands of LG TVs Possibly Exposed to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Thousands of LG TVs Possibly Exposed to Remote Hacking Read More »

Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices

D-Link, exploited, Featured, IoT Security, NAS / SecurityTicks

Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices 2024-04-09 at 13:16 By Eduard Kovacs Unpatched D-Link NAS device vulnerability CVE-2024-3273, potentially affecting many devices, is being exploited in the wild. The post Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices Read More »

Number of Chinese Devices in US Networks Growing Despite Bans

China, ICS/OT, IoT Security / SecurityTicks

Number of Chinese Devices in US Networks Growing Despite Bans 2024-04-03 at 18:31 By Eduard Kovacs An analysis by Forescout shows 300,000 Chinese devices in the US, up 40% compared to the previous year, despite bans. The post Number of Chinese Devices in US Networks Growing Despite Bans appeared first on SecurityWeek. This article is

React to this headline:

Number of Chinese Devices in US Networks Growing Despite Bans Read More »

Hotel Self Check-In Kiosks Exposed Room Access Codes

door hack, hotel, IoT Security, Vulnerabilities / SecurityTicks

Hotel Self Check-In Kiosks Exposed Room Access Codes 2024-04-02 at 17:01 By Eduard Kovacs Self check-in kiosks at Ibis Budget hotels were affected by a vulnerability that exposed keypad codes that could be used to enter rooms. The post Hotel Self Check-In Kiosks Exposed Room Access Codes appeared first on SecurityWeek. This article is an

React to this headline:

Hotel Self Check-In Kiosks Exposed Room Access Codes Read More »

Researchers Discover 40,000-Strong EOL Router, IoT Botnet

botnet, IoT Security, KV Botnet, Malware & Threats, routers / SecurityTicks

Researchers Discover 40,000-Strong EOL Router, IoT Botnet 2024-03-26 at 20:46 By Ryan Naraine Malware hunters sound an alarm after discovering a 40,000-strong botnet packed with end-of-life routers and IoT devices being used in cybercriminal activities. The post Researchers Discover 40,000-Strong EOL Router, IoT Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Researchers Discover 40,000-Strong EOL Router, IoT Botnet Read More »

Finite State Raises $20 Million to Grow Software Supply Chain Security Business

funding, ICS/OT, IoT Security, supply chain / SecurityTicks

Finite State Raises $20 Million to Grow Software Supply Chain Security Business 2024-03-23 at 06:16 By SecurityWeek News Software risk management firm Finite State has raised a $20 million growth round led by Energy Impact Partners (EIP). The post Finite State Raises $20 Million to Grow Software Supply Chain Security Business appeared first on SecurityWeek.

React to this headline:

Finite State Raises $20 Million to Grow Software Supply Chain Security Business Read More »

$200,000 Awarded at Pwn2Own 2024 for Tesla Hack

exploit, Featured, IoT Security, Pwn2Own, Tesla, Vulnerabilities / SecurityTicks

$200,000 Awarded at Pwn2Own 2024 for Tesla Hack 2024-03-21 at 11:46 By Eduard Kovacs Participants earned a total of $732,500 on the first day of Pwn2Own Vancouver 2024 for hacking a Tesla, operating systems, and other software. The post $200,000 Awarded at Pwn2Own 2024 for Tesla Hack appeared first on SecurityWeek. This article is an

React to this headline:

$200,000 Awarded at Pwn2Own 2024 for Tesla Hack Read More »

Exploited Building Access System Vulnerability Patched 5 Years After Disclosure

building, exploited, Featured, ICS/OT, IoT Security, vulnerability / SecurityTicks

Exploited Building Access System Vulnerability Patched 5 Years After Disclosure 2024-03-12 at 13:18 By Eduard Kovacs Vulnerabilities affecting a Nice Linear physical access product, including an exploited flaw, patched five years after their disclosure. The post Exploited Building Access System Vulnerability Patched 5 Years After Disclosure appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Exploited Building Access System Vulnerability Patched 5 Years After Disclosure Read More »

Unpatched Sceiner Smart Lock Vulnerabilities Allow Hackers to Open Doors

IoT Security / SecurityTicks

Unpatched Sceiner Smart Lock Vulnerabilities Allow Hackers to Open Doors 2024-03-08 at 15:02 By Ionut Arghire Multiple vulnerabilities in Sceiner firmware allow attackers to compromise smart locks and open doors. The post Unpatched Sceiner Smart Lock Vulnerabilities Allow Hackers to Open Doors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Unpatched Sceiner Smart Lock Vulnerabilities Allow Hackers to Open Doors Read More »

Fresh $100 Million Claroty Funding Brings Total to $735 Million

Claroty, funding, ICS/OT, IoT Security / SecurityTicks

Fresh $100 Million Claroty Funding Brings Total to $735 Million 2024-03-06 at 18:31 By Eduard Kovacs XIoT cybersecurity company Claroty has raised another $100 million at a reported valuation of $2.5 billion. The post Fresh $100 Million Claroty Funding Brings Total to $735 Million appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Fresh $100 Million Claroty Funding Brings Total to $735 Million Read More »

Hikvision Patches High-Severity Vulnerability in Security Management System

Hikvision, IoT Security, Vulnerabilities, vulnerability / SecurityTicks

Hikvision Patches High-Severity Vulnerability in Security Management System 2024-03-04 at 15:47 By Ionut Arghire A high-severity vulnerability in HikCentral Professional could lead to unauthorized access to certain URLs. The post Hikvision Patches High-Severity Vulnerability in Security Management System appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Hikvision Patches High-Severity Vulnerability in Security Management System Read More »