Comments
mhhfive
2/6/2019 2:03:12 PM User Rank Guardian
undocumented manufacturing backdoors...
Is there any way to disprove an undocumented manufacturing backdoor? It seems like a lot of countries would like them.. but how does anyone know if they do or don't exist? I'm sure Huawei would like to be able to definitely say they don't support backdoors of any kind....
batye
2/1/2019 2:04:50 PM User Rank Guardian
Re: Automated
@ms.akkineni yes things need to be changed as for now it seems like it free for all... and security it more like a lip service...
batye
2/1/2019 2:02:46 PM User Rank Guardian
Re: nobody's home
@Michelle as everyone keep thinking they Router is secure... but will it ever be "secure" as on my end I keep updating the router firmware... but it me... with my better safe than sorry...
Michelle
1/31/2019 9:55:11 PM User Rank Guardian
Re: nobody's home
Ahh, yes. Home network monitoring isn't much of a thing...
Michelle
1/31/2019 9:53:38 PM User Rank Guardian
Re: nobody's home
That's pretty much what my husband said when I brought it up. I immediately thought of privacy and an overreaching government. Pen testing seems ok if it means the country can be more secure.
Re: Automated
While i strongly feel device level security is required, having an additional checkpoint by Government is a definite plus.
Re: Automated
Completely agree with you that it has to be handled at device level. In this smart age that has to be a requirement.
Re: Automated
@Taimoor: On the one hand, the civil libertarian in me wouldn't particularly want government doing anything on my network, dangit.
On the other hand, doing this kind of thing recognizes that IoT security is not just an issue for individuals, but it is a national-security and global-stability issue (because non-secure IoT devices can be leveraged for botnets that can then be used to DDoS critical services and communications).
Automated
I think credential stuffing is a big risk especially when it comes to IoT devices. It can indeed be a big threat. What the government is doing to detect it is a good approach, however I believe this is something that should automatically be flagged by devices. No device should be allowed to be used if the password is unsecure. The devices have to be intelligent enough to point out to the user about the strength of the password and its age and make sure the users take prompt action to change the passwords.
Re: nobody's home
@Joe: I think it'd only sound like an attack when there's an ulterior motive involved to exploint the information. If the purpose is to simply assess the current security situation and not cause any damage, it'd probably not fall under an attack. But again that's my personal opinion about it.
|
|
A new report by the US Government Accountability Office could be the catalyst for meaningful change on the Internet privacy front.
The kinds of threats an organization encounters are changing as the defenses that are brought to bear upon them change.
Russian threat actors were the most prolific last years – and were eight times faster at 'breaking out' than their nearest rival.
Cloud projects are big. Huge. So it's not perpetuating FUD to point out that cloud transformation still bears security and data-stewardship risks. But what appears too big a challenge for mere man might be no match for machine.
Zero-day vulnerabilities are serious, and on the rise. And IT-security teams make the problem worse when they fail to respond, or respond poorly, to responsible vulnerability disclosures.
In a wide-ranging interview, Cisco security boss Gee Rittenhouse talks about how machine learning, AI, blockchain and other emerging technologies ...
CloudPassage's new technology, called Container Secure, involves a five-step process to ensure seamless security in container deployments from the ...
You can't so much as go to a coffee shop today without hearing the word 'blockchain.' Hearing about a useful blockchain is less common, but ...
Last year, 60 million companies changed owners worldwide. That turnover makes it incredibly difficult to avoid doing business with entities (e.g., ...
Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ...
All Videos
Sage Wagner, senior security pre-sales engineer with RiskSense, provides a demo of the company's latest technology 'RiskSense Solution,' a ...
Janus Technologies is launching a line of products that protect against the many threats to enterprises' sensitive data. David Schultz, vice ...
This new video will inspire companies to reimagine their business for success in a world where connectivity is more than a commodity.
Sponsored Video
All Videos
An interview with Steve Grobman, CTO of McAfee
|