FortiGate VPN Default Config Allows MitM Attacks
Posted on Friday September 25, 2020

The client's default configuration for SSL-VPN has a certificate issue, researchers said.

Industrial Cyberattacks Get Rarer but More Complex
Posted on Friday September 25, 2020

The first half of 2020 saw decreases in attacks on most ICS sectors, but oil/gas firms and building automation saw upticks.

Ring’s Flying In-Home Camera Drone Escalates Privacy Worries
Posted on Friday September 25, 2020

Privacy fears are blasting off after Amazon's Ring division unveiled the new Always Home Cam, a smart home security camera drone.

Mozi Botnet Accounts for Majority of IoT Traffic
Posted on Thursday September 17, 2020

Mozi’s spike comes amid a huge increase in overall IoT botnet activity.

Bluetooth Spoofing Bug Affects Billions of IoT Devices
Posted on Wednesday September 16, 2020

The 'BLESA' flaw affects the reconnection process that occurs when a device moves back into range after losing or dropping its pairing, Purdue researchers said.

CEOs Could Be Held Personally Liable for Cyberattacks that Kill
Posted on Monday September 07, 2020

As IT systems, IoT and operational technology converge, attacks on cyber-physical systems in industrial, healthcare and other scenarios will come with dire consequences, Gartner predicts.

Vulnerability Disclosure: Ethical Hackers Seek Best Practices
Posted on Friday September 04, 2020

Cybersecurity researchers Brian Gorenc and Dustin Childs talk about the biggest vulnerability disclosure challenges in IoT and the industrial vertical.

FBI: Ring Smart Doorbells Could Sabotage Cops
Posted on Tuesday September 01, 2020

While privacy advocates have warned against Ring's partnerships with police, newly unearthed documents reveal FBI concerns about 'new challenges' smart doorbell footage could create for cops.

Four More Bugs Patched in Microsoft’s Azure Sphere IoT Platform
Posted on Tuesday August 25, 2020

Researchers have unearthed more vulnerabilities in Microsoft’s IoT security solution.

News Wrap: AWS Cryptojacking Worm, IBM Privacy Lawsuit and More
Posted on Friday August 21, 2020

Threatpost editors discuss a cryptomining malware targeting AWS systems, a recent development in a lawsuit against the IBM-owned Weather Channel app, and more.