IoT Security Failures Can Be Sh*tty
It’s hard not to see IoT security failures in the news because they can be dramatic, and this week was no different. The Register reported that in Moscow a skyscraper-high plume of sewage had erupted, with speculation that Ukrainian hackers were behind it (the official explanation was that it was ... Read More
October Can Be Scary
Every October brings both Halloween and National Cybersecurity Awareness Month (NCSAM). Most people know about Halloween, but if you’re just coming up to speed on NCSAM here is some background. National Cybersecurity Awareness Month (NCSAM) was established in the United States in October 2004 (yes, this is the 20th anniversary!) ... Read More
Forget About Hurricanes, Enterprises Must Prepare for Typhoons
It’s hurricane season, and everyone knows what to expect and do. Install storm shutters, have extra food and supplies, backup generators, have flood insurance, and keep paying attention to upcoming forecasts. All of these preparations help to minimize the impact and get you back up and running as quickly as ... Read More
Training Your Team on the Security of CPS & IoT Systems
(Part 3 of our 3 part 2024 Summer IoT Security Series)After you’ve deployed and maintained security practices across IoT/CPS systems at scale comes having ongoing training and awareness building about security. It not only reduces organizational risk, it also develops an internal culture that makes security more efficient and comprehensive. ... Read More
Maintaining the Security of CPS & IoT Systems
(Part 2 of our 3 part 2024 Summer IoT Security Series)Once a new CPS/IoT system is deployed, secured, and delivering the business value you intended it to, it’s time to focus on keeping that system operational and secured. In working with large-scale customers across multiple verticals Viakoo has seen what ... Read More
CPS & IoT Security Starts at Deployment
(Part 1 of our 3 part 2024 Summer IoT Security Series) The starting point for many cyber-physical systems (IoT/OT/ICS) having security vulnerabilities is in how they are setup and managed by either an internal team or an outside service provider. It’s an often-overlooked part of reducing corporate risk and sets ... Read More
IoT Security Means Remediation Not Mitigation
A topic that I recently got asked about was vulnerability mitigation for IoT systems, which shows that even within the security community there is still a belief that mitigation equals threat resolution. For IoT systems this simply does not work for many reasons, first among them is that these IoT, ... Read More
RSAC 2024 Day 2: IoT Security Questions (and Answers)
RSA Conference delivers in terms of interesting dialogues with other cybersecurity professionals, and this year while there is not much on the conference agenda related to IoT security there is a lot of discussion about it. Whether it’s the UK’s Product Security law going into effect at the end of ... Read More
RSAC 2024: IoT Security Questions (and Answers)
The 2024 RSA Conference is underway, and Viakoo is out in force. During the conference as we meet with customers, prospects, media, and analysts I will try to cherry pick some of the more interesting questions related to IoT Security. Over the past year the number of IoT security breaches ... Read More
Urgency on Password Management
As a security professional I’d like you to consider the following scenario. You’re constantly adding new laptops to your organization, devices that connect to your corporate networks and will hold and transit incredibly valuable and sensitive data. All of these laptops come into your company with exactly the same password ... Read More
