Articles about internet of things

Dahua cameras stung by Web interface bug

Chinese camera-maker Dahua has flicked out a patch to fix a possible remote code execution vulnerability in its Web admin interface. The company uses a Web interface named as “Sonia”* in this CERT advisory – and there's a stack buffer overflow to fix. Unpatched, the advisory states, various versions of the Dahua firmware don' …
soap

'Millions of IoT gizmos' wide open to hijackers after devs drop gSOAP

Security researchers investigating internet-connected video cameras have uncovered a bug that could conceivably leave millions of devices open to easy pwnage. The team from embedded security specialists Senrio was looking into the code running an M3004-V network camera from Axis Communication. They found a serious hole in the …
Iain Thomson, 19 Jul 2017

YASA* looks at turning commercial buildings into Internet things

A vendor collective pushing Internet of Things standardisation for commercial buildings has published its first set of specifications, and wonder-of-wonders the specs include security. In evidence that the world's fast running out of tortured names that don't sound stupid in English or funny/obscene in other languages, the …
Image by Danomyte http://www.shutterstock.com/gallery-256714p1.html

AGFEO smart home controllers need patching

Smart-home controllers from German company AGFEO have adopted best practice internet things security by offering an unsecured Web admin interface. The now-patched attack vectors included unauthenticated access to some services, authentication bypass, cross-site scripting (XSS) vulns, and hard-coded cryptographic keys. The …
European flag with sad face

EU security think tank ENISA looks for IoT security, can't find any

European network and infosec agency ENISA has taken a look at Internet of Things security, and doesn't much like what it sees. So it's mulling a vendor's nightmare that the US and UK dared not approach: security regulation - at least the minimal regulation of testing and certification. In a position paper published Monday, …

O2 will be carrying out UK IoT connectivity trials later this year

Exclusive British telco O2 is the first to publicly confirm that it will be trialling 3GPP-compliant Internet of Things connectivity tech in the UK later this year. Although the telco would not be drawn on specifics, it told The Register it would be trialling "3GPP cellular IoT [Internet of Things] technology" this year. This is a …
Gareth Corfield, 22 May 2017
shutterstock_282226826-Internet-of-things

IoT needs security, says Microsoft without even a small trace of irony

Still reeling from criticism over the WannaCrypt attack, Microsoft has stuck its hat on a stick and raised it out of the trench to see how its proposals for Internet of Things security might be received. Since IoT security is almost uniformly awful, it's probably a good thing that the creator of Windows XP Embedded wants to …
Overflowing dishwasher shutterstock

Dishwasher has directory traversal bug

Don't say you weren't warned: Miele went full Internet-of-Things with a network-connected dishwasher, gave it a web server, and now finds itself on the wrong end of a security bug report – and it's accused of ignoring the warning. The utterly predictable vulnerability advisory on the Full Disclosure mailing list details CVE- …
oneweb

Look who's bailed out internet-satellite provider Intelsat? It's... Softbank?

Comment Softbank has arrived as the unlikely white knight to save Luxembourg-based internet-satellite provider Intelsat from running out of cash. It has injected debt funding and proposed a merger through its LEO satellite firm OneWeb. Now bondholders for Intelsat must give the deal the go-ahead. The deal came just as Intelsat …
Faultline, 7 Mar 2017
A wafer full of Intel's C3000 Atoms

Intel scales Atom to 16 cores, updates Xeon SoCs

Intel's tossed out a batch of new products ahead of Mobile World Congress, all of them handy for internet of things applications operating on very fast wireless networks. Among them is a new generation of "Denverton" Atom processors. The new C3000 family now offer between two and 16 cores, with clock speeds up to a swift 2.2 …
Simon Sharwood, 23 Feb 2017
Used car on laptop

Connected car in the second-hand lot? Don't buy it if you're not hack-savvy

Cars are smart enough to remember an owner, but not smart enough to forget one – and that's a problem if a smart car is sold second-hand. The problem is as simple as you could imagine: people shovelling apps and user services into cars forget that the vehicle nearly always outlives its first owner. The global head of IBM's X- …
Surprised man photo via Shutterstock

'Mafia' of ageing scientists, academics and politicos suck at picking tech 'winners'

Rarely has a report on industrial strategy, unveiled by the Prime Minister Theresa May at the Sci-Tech Daresbury centre in the North West on January 23 contained so little about industry. The strategy is built on what the Government is calling 10 "pillars": including investment in science, research and innovation, developing …
Marcus Gibson, 1 Feb 2017
Tabby cat cuddles roll of one-hundred dollar bills. Photo by Shutterstock

Put walls around home Things, win $25k from US government

America's Federal Trade Commission has kicked off a challenge to see who can come up with good ideas for securing the Internet of Things. While the US$25,000 top prize will probably end up in the pocket of an infosec pro, the FTC interestingly says it's interested in hearing from “tinkerers” and “thinkers” as well as from …
Netanel Rubin at Chaos Communications Congress 2016.

Hackers could turn your smart meter into a bomb and blow your family to smithereens – new claim

Smart meters are "dangerously insecure," according to researcher Netanel Rubin – who claimed the gear uses weak encryption, relies on easily pwned protocols, and can be programmed to explode. The software vulnerability hunter derided global efforts to roll out the meters as reckless, saying the "dangerous" devices are a risk …
Darren Pauli, 4 Jan 2017
A_KUDR http://www.shutterstock.com/gallery-1864778p1.html

Programmer finds way to liberate ransomware'd Google Smart TVs

Television production factory LG has saved Darren Cauthon's new year by providing hidden reset instructions to liberate his Google TV from ransomware. The company initially demanded more money than the idiot box was worth to repair the TV and relented offering instructions for resetting the telly after Cauthon took to Twitter …
Team Register, 3 Jan 2017
Internet-enabled baseball

Building IoT: Forget the vision, just show us how to build it

If you’ve had all the vision you can handle, and just want to know how to actually develop devices, applications and networks to exploit the internet of things, you really need to join us next March for Building IoT London. Between March 27 and 29, we’ll be bringing together an array of experts with extensive real world …
Team Register, 22 Dec 2016
Johnny Cab

New US rules on 'vehicle-to-vehicle' communications under consultation

Car manufacturers active in the US market will need to ensure new models are fitted with technology that allows those vehicles to "talk" to other vehicles from as early as 2021, under new government proposals. The US Department of Transportation (DoT) has opened a 90-day consultation on a new Federal Motor Vehicle Safety …
OUT-LAW.COM, 16 Dec 2016
Matthew with the magic spheres

Bluetooth: Remember us? Internet of Things before it was a Thing?

Analysis Bluetooth 5 has finally been unveiled, with headline claims of 200-metre range (quadrupling that of Bluetooth 4) and doubled bandwidth (now 2Mbps). There is a clear focus on Internet of Things devices and applications, but no sign of the proposed mesh protocol, which would do even more to improve the spec’s capabilities. The …
Wireless Watch, 14 Dec 2016

Create a news alert about internet of things, or find more stories about internet of things.

Biting the hand that feeds IT © 1998–2017