The UK government has proposed a new Product Security and Telecommunications Infrastructure (PSTI) Bill to protect users against security issues prevalent in Internet of Things (IoT) devices. The bill places security requirements on IoT device manufacturers, importers, and distributors, including rapid vulnerability disclosure and a ban on default passwords. To remain competitive in a world of high-speed technological change, many manufacturers release IoT devices that have unaddressed vulnerabilities. Although this bill is intended to eradicate such practices, it will be difficult for the UK to enforce, and is unlikely to have a significant impact in the following 12 months. For the legislation to see real success, consumer education and responsibility must also improve.
Most Recent Flipbooks
The Federal Security Service of the Russian Federation (FSB) conducted a series of raids and arrests against at least 20 members of the "REvil" ransomware group.
Researchers have discovered a critical vulnerability in the popular open-source Java SQL database H2
For 2022, cyber-security practitioners must be extraordinarily nimble and adept. Plus information on telegram dropping malware, North Korean group exploits Russia, and Log4j crisis spilling in to 2022
Log4j bug exposes fragility of digital ecosystem worldwide. Plus information on Magecart home for the holidays, Emotet regaining power, and Muddywater APT group hunts for airline data via Slack.
Microsoft has allegedly halted a long-term cyber-espionage operation of “NICKEL”, a threat group linked to the People’s Republic of China (PRC).
The well-established “Mozi” peer-to-peer (P2P) botnet has developed new persistence capabilities.
A configurable, malicious Traffic Direction System (TDS) has been enabling widespread malware attacks.