Security flaws in connected devices and the IoT are plaguing the digital landscape, impacting a broad range of industries.

The post IoT Connected Devices Pose Significant Risk to Organizations appeared first on Security Boulevard.

Earlier this month, Rambler Gallo pled not guilty to charges that he attempted to sabotage the water treatment facility in Discovery Bay, California. The facility provides treatment for the water and wastewater systems for the town’s 15,000 residents. An unsealed federal court indictment showed Gallo logged into the Supervisory Control and Data Acquisition (SCADA) network..

The post Insider Indicted for Attempting to Sabotage California Water Plant appeared first on Security Boulevard.

Kevin is Free: Hackers’ hacker dies, aged 59.

The post R.I.P. Kevin Mitnick, 1963–2023 appeared first on Security Boulevard.

Russia’s war strategy increasingly involves cybersecurity, with the country expected to ramp up attacks on critical infrastructure in Ukraine and countries that are members of NATO, according to Switzerland’s Federal Intelligence Service (FIS). “The war in Ukraine represents a threat with partially global implications for critical infrastructure. Critical infrastructure outside the war zone could also..

The post Russia Expected to Increase Critical Infrastructure Attacks appeared first on Security Boulevard.

The Biden administration unveiled a cybersecurity certification and labeling program that will make it easier for enterprises and consumers to see which smart devices are more secure and less vulnerable to attacks.

The post Biden Admin Eyes IoT Cybersecurity With Device Labeling Program appeared first on Security Boulevard.

Maple Tree Side Effects: Torvalds feels the pressure, fixes lazy locks.

The post StackRot: Linux Bug so bad Linus Dives Into Code to Fix It appeared first on Security Boulevard.

PV OT: VPN PDQ! 9.8 CVSS known since May 2022—but still exploitable on 400+ net-connected OT/ICS/SCADA systems.

The post Contec SolarView: Critical Bug Unpatched After 14 MONTHS appeared first on Security Boulevard.

Enterprises lack detections for more than three-quarters of all MITRE ATT&CK techniques, while 12% of SIEM rules are broken and will never fire due to data quality issues including misconfigured data sources and missing fields. These were among the results of a CardinalOps report which analyzed real-world data from production SIEMs including from Splunk, Microsoft..

The post Enterprises Unprepared to Defend Against MITRE ATT&CK Techniques appeared first on Security Boulevard.

The security policies underpinning the nation’s critical infrastructure sectors and protecting them from cyberattacks are outdated and require comprehensive overhaul, according to a recent report by the Cyberspace Solarium Commission 2.0. According to the report, the existing policies have significant gaps, with one of the main issues being ineffective collaboration between the government and private..

The post Critical Infrastructure Security Needs an Overhaul appeared first on Security Boulevard.

NYOB accuses TeleSign, Proximus and BICS of misusing phone users’ private data. Reputation scoring = privacy violation?

The post GDPR FAIL: US Firm ‘Profiles Half the World’ — it’s Max Schrems Again appeared first on Security Boulevard.