Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT

Mikko Hypponen's Vision of the Cybersecurity Future

0%
100%

BLACK HAT USA 2017 -- Twenty years from now, will everything be a thing in the Internet of Things? If so, how does the security industry need to prepare? F-Secure's chief research officer Mikko Hypponen visits the Dark Reading News Desk to weigh in on this, and what else the future promises (and threatens).

Watch all 45 News Desk interviews at DarkReading.com/DRNewsDesk.

Learn from the industry’s most knowledgeable CISOs and IT security experts in a setting that is conducive to interaction and conversation. Click for more info and to register.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
menuisier69
50%
50%
menuisier69,
User Rank: Apprentice
9/6/2017 | 5:15:43 AM
Re: Mikko Hypponen;s Security Talk
"Much as I respect his position, I think he is talking linearly and not laterally"

 

100% agree but Mikko Hypponen is still a genius :P
tcritchley07
50%
50%
tcritchley07,
User Rank: Moderator
9/5/2017 | 9:19:29 AM
Mikko Hypponen;s Security Talk
Much as I respect his position, I think he is talking linearly and not laterally. E,g. "I cant see SW in IOT devices". Nobody could see men landing on the moon 100 years ago be we did. IOT devices in a year or so can easily hold a 128 MB /(or GB) memory/storage and enough briains to  encrypt data and commands and to take part in a later cyber security architecture, However, the IoT manufacturers will have to toe the IoT function implementation line drawn by Goverments and businesses who carry very large sticks in the pursuit of security.

Even today, the bad guys are practising their IoT breach skills, e.g. Iranian nucclear plant, Ukraine power station, cars stopped in 'flight'  (by friendly hackers as a trial). They are an order of magnitude greater hazard than current exposures and 2 orders of magniude in number.
Commentary
What the FedEx Logo Taught Me About Cybersecurity
Matt Shea, Head of Federal @ MixMode,  6/4/2021
Edge-DRsplash-10-edge-articles
A View From Inside a Deception
Sara Peters, Senior Editor at Dark Reading,  6/2/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23394
PUBLISHED: 2021-06-13
The package studio-42/elfinder before 2.1.58 are vulnerable to Remote Code Execution (RCE) via execution of PHP code in a .phar file. NOTE: This only applies if the server parses .phar files as PHP.
CVE-2021-34682
PUBLISHED: 2021-06-12
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
CVE-2021-31811
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-31812
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-32552
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.