Blog

Concern over vulnerabilities in IoT products and services has become a top of mind issue with policymakers. From serious internet attacks such as the Mirai botnet cyberattack which took down major websites such as Netflix and Spotify, to privacy concerns over connected consumer devices, there is a strong push for government regulation.

The Internet of Things (IoT) is pushing full steam ahead through 2018, and it is already understood that the IoT is transforming businesses through Smart innovation and operational efficiencies, which extend far into our daily lives. Large organizations such as Microsoft, Amazon and PTC have already invested billions in the IoT and continue to do so with their IoT platform offerings. However, there are still a few challenges affecting project deployments, particularly in the area of security and risk.

For small and medium sized enterprises, cloud-based software infrastructure delivered via SaaS model can provide a great cost-effective alternative to delivering effective security services to your business.

Today, product manufacturers have a tough decision on what to build into their IoT products and how to make them stand out. Security is often seen as a “nice to have” feature but is increasingly becoming a “must have”. Simply put, product manufacturers need to pay more attention to security.

We are in the GDPR home straight with the finish line in sight. However, that thing we see is not the finish line but the deadline. We are now only weeks away from the inception of the new GDPR regulation, that fundamentally changes the way organizations manage, process and protect personal information.

Are organizations ready to manage consent, reporting of a data breach, subject access requests etc., etc.?

Do organizations understand how exposed their business and brand could be?

Is the #RSA security bubble bursting?

Reflecting on what was a very long and industrious week in San Francisco, it’s important to try and decode, decipher, and maximize the investment in such an event.

With record numbers of people attending and over 1,700 security companies present, of which most customers apparently buy from over 50 on average, the security web is only becoming more prevalent and significant to us all.

Back in April 2017, Device Authority’s CTO Rao Cherukuri wrote a blog titled “IoT Security is too critical to be an optional extra – Security by design, from the beginning” – detailing key recommendations for securing IoT devices.

We continue to see a distinct difference between security products and secure products. Which is also the difference between detect/respond and protect/prevent. Prevention is better than cure.

Connected medical devices help improve patient health in many ways, such as allowing doctors to adjust implanted devices without resorting to dangerous invasive procedures, transmitting vital medical data remotely, performing real-time patient monitoring in intensive care units, and much more. But with those rewards come risks. Medical IoT devices also present significant potential security hazards, and they’re getting worse.

The importance of protecting Identity, Integrity and Data security policies of participating IoT nodes in the Blockchain network 

A blockchain network is only as secure as its infrastructure

As predicted, botnet enabled malware attacks continue. The latest discovered is Okiru (meaning Wake Up in Japanese).  Okiru has the potential to reach BILLIONS of Internet of Things (IoT) devices due to its implementation! Okiru’s release specifically highlights the exposure of unsecure IoT devices again and continues to show the sophistication of hackers in utilizing IoT connected devices in orchestrating significant attacks.