prpl Foundation Articles
Security professionals are stressing over IoT
Research has revealed that security and LoB leaders are experiencing high levels of anxiety due to IoT/OT security concerns. The majority of organisations (82%) struggle to identify all of their network-connected devices, and when asked who is primarily responsible for securing IoT, IT and LoB leaders did not have a clear answer or delineation of ownership.
Hacking your heart rate
Having discovered that pacemakers could be hacked, the US Food and Drug Administration (FDA) is recalling nearly half-a-million devices from St Jude Medical (now Abbotts). The vulnerable firmware covers any device sold before 28th August. This is the first time a fix has been available.
Researchers hack robot to violently stab tomato
Security researchers have discovered that a number of popular industrial and home robots can be easily compromised to spy on humans and even remotely control the bots to attack their owners.
Dude, where's my car key? Hacker breaks into family car
According to a recent news story, a hacker has helped a family reunite with their beloved car which they had to abandon for months after they lost a one-of-a-kind key. Without any other alternatives in getting a key, the desperate family agreed for the car to be hacked, with the hacker given access to the vehicle's on-board immobiliser computer. Cesare Garlati, Chief Security Strategist at the prpl Foundation, commented: "Despite this being ...
Tesla model X hack: the danger of connected cars
Researchers have found security vulnerabilities in one of Tesla’s cars and demonstrated that they can be exploited remotely to do things like open the car’s doors and force it to break while in motion. Cesare Garlati, Chief Security Strategist at the prpl Foundation, commented on the news: "The danger with connected cars is the 'connected' aspect. Today’s IoT devices are housing numerous vulnerabilities, waiting for hackers...
Don’t let your fridge door be a way into your network
Police have warned that household appliances which connect to the internet will increasingly be hacked by criminals seeking to steal your identity, rob your home or bank accounts. Chief Constable, Mike Barton, who leads the National Police Chiefs Council on crime operations, has warned about the dangers of the Internet of Things (IoT) as more ordinary household items become connected.
FBI issues warning about Internet-connected toys
A public service announcement about the improper security and privacy protections provided by manufacturers of Internet-connected smart toys, also known as IoT toys, has been issued by the Internet Crime Complaint Centre (IC3), a division of the FBI. The announcement comes after numerous issues were reported where smart toys had leaked the personal details of small children and vulnerabilities allowed hackers to spy on children.
Are e-cigarettes the next hacking risk?
While electronic cigarettes might be better for your personal health than normal cigarettes, latest research has found that your computer might not be so lucky. Giving a presentation at BSides London, security researcher & C++ software developer Ross Bevington showed how an e-cigarette could be used to attack a computer by fooling the computer to believe it was a keyboard or by tampering with its network traffic. While Bevington's p...
Firmware vulnerabilities highlight IoT's major weakness
It has recently come to light that there is a massive flaw in Intel chips that allows hackers to remotely takeover large number of devices without even needing to enter a password. Cesare Garlati, Chief Security Strategist, prpl Foundation, commented on the importance of securing the firmware in IoT devices: "Firmware vulnerabilities are the most dangerous because by definition firmware is 'persistent'. The software that is built in to the device...
Researchers remotely hack an industrial robot
Researchers have discovered that industrial robots can be remotely hacked to cause potentially devastating damage, as serious concerns over the safety and security of Internet of Things (IoT) devices continue to mount. Researchers at security firm Trend Micro and Italy's Politecnico Milano found that many internet-connected industrial machines run on outdated software or have poor software protection.
Beware of Bluetooth burglars raiding your nest!
A recent discovery has found that NEST CCTV cameras can be wirelessly hacked to crash and stop recording footage via Bluetooth, making them and the houses they protect perfect targets for criminals.
Study finds smart home tech gaining popularity, yet still insecure
The non-profit prpl Foundation has unveiled its global study on the use of smart devices in a domestic setting entitled, “The prpl Foundation Smart Home Security Report.” The one-of-a-kind study, which was conducted through OnePoll, covers the proliferation of smart device use and security within the home.
Shaping the future of the smart home
A Carrier Interest Group (CIG) has been set-up by the prpl Foundation to ensure that the technical needs of major international carriers are represented and communicated to the wider prpl community and contribute to prpl’s coordinated response to new regulations put forth by government agencies, such as the FCC in the US, which potentially limit the use of open source software.
First open source Hypervisor for the IoT
The prpl Foundation has announced the upcoming debut of the prplHypervisor at the IoT Evolution Expo in Las Vegas. The prplHypervisor is an industry-first light-weight open source hypervisor specifically designed to provide security through separation for the billions of embedded connected devices that power the IoT.
IoT innovation in the spotlight as prpl Foundation continues to grow
prpl Foundation has announced the addition of four new members that will help steer the future of the IoT. The companies joining consist of ADB, the Swiss connected solutions specialist; Russian semiconductor firm Baikal Electronics; SoftAtHome, the French embedded software for the digital home company; and Intrinsic-ID, a specialist in Physical Unclonable Functions (PUF) for securing connected devices, who will also be helping with the advanceme...
Could IoT devices really be the next victims for ransomware?
The Internet of Things (IoT) is attracting its fair share of fear, uncertainty and doubt these days. Take for example a recent report from ICIT entitled, ‘Combatting the Ransomware Blitzkreig’. In it, the authors James Scott and Drew Spaniel make the point that, “It is not inconceivable that malware, and ransomware in particular, will eventually target IoT devices.”