D-Link Agrees to 10 Years of Security Audits to Settle FTC Charges

Taiwanese networking equipment manufacturer D-Link has agreed to implement a “comprehensive software security program” in order to settle a Federal Trade Commission (FTC) lawsuit alleging that the company didn’t take adequate steps to protect its consu… Continue reading D-Link Agrees to 10 Years of Security Audits to Settle FTC Charges

FTC settles with device maker D-Link, requires ‘comprehensive’ security effort

Device manufacturer D-Link Systems has agreed to implement a “comprehensive software security program” to settle Federal Trade Commission charges that the company exposed customer data to hackers while advertising top-of-the-line security measures. D-Link will not pay any financial penalties as part of the settlement, but its manufacturing process will have to threat modeling; tests for security bugs prior to a product’s release; ongoing device monitoring to address flaws; automatic firmware updates; and the acceptance of vulnerability reports from researchers. The government’s litigation against the Southern California company, which makes wireless routers and smart cameras, began in 2017. Regulators found that D-Link, despite billing its products as having “advanced network security,” actually failed to test them and did not remediate “well known and preventable security flaws.” That same year, researchers found 10 vulnerabilities in a single D-Link router model that could have been exploited to take over a device. Under the settlement, the company also will be subject […]

The post FTC settles with device maker D-Link, requires ‘comprehensive’ security effort appeared first on CyberScoop.

Continue reading FTC settles with device maker D-Link, requires ‘comprehensive’ security effort

Consumer routers targeted by DNS hijacking attackers

Owners of a slew of D-Link, ARGtek, DSLink, Secutech, TOTOLINK and Cisco consumer routers are urged to update their device’s firmware, lest they fall prey to ongoing DNS hijacking campaigns and device hijacking attacks. Targeted Cisco routers The… Continue reading Consumer routers targeted by DNS hijacking attackers

Most home routers lack simple Linux OS hardening security

A new assessment of 28 popular models for home users failed to find a single one with firmware that had fully enabled underlying security hardening features offered by Linux. Continue reading Most home routers lack simple Linux OS hardening security

This D-Link Camera Has a Huge Security Flaw, According to Consumer Reports

Internet-enabled and IoT devices have made it possible to deploy a custom home security system. One can purchase many wireless security cameras, sensors and motion detectors and install them around their home or property. The beauty of a DIY system is … Continue reading This D-Link Camera Has a Huge Security Flaw, According to Consumer Reports

AI Fear, FDA, Tesla, and D-Link – Paul’s Security Weekly #580

Fear of AI attacks, the FDA releases cybersecurity guidance, watch hackers steal a Tesla, serious D-Link router security flaw may never be patched, and California addresses default passwords! All that and more, on this episode of Paul’s Security … Continue reading AI Fear, FDA, Tesla, and D-Link – Paul’s Security Weekly #580