Collaborate Disseminate
Fuze addressed two issues that publicly exposed recordings of private business meetings made over the collaboration platform. Continue reading Fuze Patches Bug That Exposed Recordings of Private Business Meetings
Hyundai Motor America patched its Blue Link mobile app after researchers found a cleartext encryption key that could be use to expose user and vehicle information. Continue reading Hyundai Patches Leaky Blue Link Mobile App
Harley Geiger, director of public policy at Rapid7, talks about how policy goes hand in hand with technology when it comes to cybersecurity, the government’s focus on IoT and critical infrastructure, and more.
Continue reading Harley Geiger on Cybersecurity Policy
Andrew Whitaker is the Director of Global Services at Rapid7. He leads Rapid7’s penetration testing services that help organizations around the world gain insight into real-world risk and remediation guidance. Andrew is a subject matter expert on computer hacking, an author of best-selling networking and security books, and an award-winning technical trainer. Full Show Notes Continue reading Andrew Whitaker, Rapid7 – Paul’s Security Weekly #505
Rapid7 researchers have discovered a number of vulnerabilities in the Double Robotics Telepresence Robot, the company’s iPad-based telepresence device that looks a bit like a Segway. About the Double Robotics Telepresence Robot The robot allows remote users to simulate a physical presence during a meeting, and facilitates face-to-face interaction with the other participants. It uses gyroscope and accelerometer sensors in its base to easily move around, and can be controlled with a desktop (Mac or … More → Continue reading Double Robotics Telepresence Robot can be hacked
Double Robotics telepresence robots were patched against vulnerabilities that leaked device data and session keys and tokens. Continue reading Telepresence Robots Patched Against Data Leaks
J. Michael Daniel, the career federal official who served as White House cybersecurity coordinator under President Barack Obama, will helm a nonprofit alliance founded by cybersecurity giants to better share information about cybercrime and other threats. The Cyber Threat Alliance announced the appointment in a press release Tuesday. The group also announced that it was […]
The post J. Michael Daniel, Obama’s cybersecurity czar, to head industry nonprofit appeared first on Cyberscoop.
Continue reading J. Michael Daniel, Obama’s cybersecurity czar, to head industry nonprofit
There is little predictable difference between the cybersecurity of IT networks in large companies as opposed to small ones, or between those from different business sectors, according to hackers for hire who try to break in to test defenses. The penetration testers, who work for security firm Rapid7, answered a questionnaire last quarter after 128 different engagements with a wide […]
The post Network size is no predictor of cyberattack readiness, penetration tests show appeared first on Cyberscoop.
Continue reading Network size is no predictor of cyberattack readiness, penetration tests show
Researchers are warning patients who use insulin pumps made by Johnson & Johnson this week that vulnerabilities in the devices could be exploited to trigger an overdose. Continue reading Vulnerabilities in Insulin Pumps Can Lead to Overdose
Among the Equation Group exploits leaked by the Shadow Brokers, the one named EXTRABACON that targets Cisco ASA devices got the most attention from security researchers and attackers. It has been demonstrated that the original exploit can be easily modified to work on more recent versions of the Cisco ASA SSL VPN appliances, and researchers armed with honeypots noted that exploitation attempts started soon after the leak. You would think that news like this would … More → Continue reading Too many Cisco ASA boxes still open to an EXTRABACON attack