SecurityWeek: Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick? https://www.securityweek.com/smart-cities-utopian-dream-security-nightmare-or-political-gimmick/ #IoTSecurity #SmartCity #Featured #ICS/OT #XIoT #IoT

💥​ Another exciting milestone for @Claroty—xDome is now available on AWS Marketplace!

One of the many challenges in securing cyber-physical systems is the lack of visibility into OT assets and security events. Through our strategic partnership, customers can get real-time, in-depth asset discovery, vulnerability & risk management, threat detection, and network protection with @Claroty xDome – and simplified procurement, flexible pricing and terms, and control and governance through AWS Marketplace. Find out more: https://aws.amazon.com/marketplace/pp/prodview-oo4s35ynqwbiq?sr=0-1&ref_=beagle&applicationId=AWSMPContessa

#aws #claroty #otsecurity #iotsecurity #awsiot #awssecurity #awsmarketplace #xiot #awscloud #awspartners #ot #iiot

Today, we're pleased to announce an expanded integration with @crowdstrike to increase visibility and reduce cyber and operational risk in industrial environments. This native integration between @Claroty Edge and the @crowdstrike Falcon Discover for IoT module includes a common methodology to discover, categorize, and recognize assets and joint research to continually improve device recognition—giving customers visibility, protection, and monitoring controls for the entire Extended Internet of Things (#XIoT), including operational technology (#OT), #IoT and #IT assets. Read more: https://claroty.com/press-releases/claroty-expands-integration-with-crowdstrike-to-increase-visibility-and-reduce-risk-in-industrial-environments

💥​ Our latest State of XIoT Security Report for the 2H 2022 is available: Interesting numbers and insight on #XIoT product security and the numbers of published vulnerabilities affecting them. Read more in this blog: https://claroty.com/team82/blog/state-of-xiot-security-report-shows-growth-in-product-security-while-published-vulnerabilities-drop

📁​ Download the report: https://claroty.com/resources/reports/state-of-xiot-security-2h-2022

A very cool series on IoT devices reverse engineering by @apps3c

Discover components and ports: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-1-discover-components-and-ports/

Firmware dump and analysis: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-2-firmware-dump-and-analysis/

Radio communications: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-3-radio-communications/

Internal communications: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-4-internal-communications/

#iot #xiot #embedded #Linux #reverseengineering #infotech #cybersecurity #infosec

Will you be at #S4x23 next week? Take a timeout at our Lounge on Tuesday, Feb. 14 at the Loews Hotel! Grab some high-quality H2O, and let's go over advancing your #cybersecurity and intercepting threats to the #XIoT. 🏈​ There'll be hourly raffles for amazing prizes, and more! #S4 https://s4xevents.com/

In order to protect OT environments, we need to think of cyber-physical systems security more holistically, as our physical and digital worlds connect more profoundly. In this blog, let's take a closer look at the evolution of #XIoT cybersecurity. Read here: https://okt.to/9gwfxF.

A lot to learn in this series on IoT devices reverse engineering by @apps3c

Part 1: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-1-discover-components-and-ports/
Part 2: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-2-firmware-dump-and-analysis/
Part 3: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-3-radio-communications/
Part 4: https://security.humanativaspa.it/a-journey-into-iot-unknown-chinese-alarm-part-4-internal-communications/

#iot #xiot #embedded #Linux #reverseengineering #infotech #cybersecurity #infosec

💡​ Connect with #Team82 on Slack! Join our #Team82Research channel to stay up to date with #XIoT vulnerabilities directly from the the industry’s best cybersecurity vulnerability and threat research team. https://join.slack.com/t/team82research/shared_invite/zt-18v6d0z6f-SDT3JsDlFyuALvkXkACelg

NEW REsearch: OpenSSL Usage In UEFI Firmware Exposes Weakness In SBOMs

The Binarly REsearch team takes a deeper look into how the recent OpenSSL security updates reflected on the UEFI firmware supply chain ecosystem, and how diversified the widespread use of OpenSSL versions are in the firmware context. The findings aren’t pretty.

Binarly is all about understanding and enabling Firmware Security Posture Management. We have a saying "Even signed firmware cannot be trusted" and our analysis of SBOMs continues to support this premise.

https://www.binarly.io/posts/OpenSSL_Usage_in_UEFI_Firmware_Exposes_Weakness_in_SBOMs/index.html

#firmware #xiot #supplychainsecurity #sbom #FSPM

Get your copy of our revamped "State of #XIoT Security Report: 1H 2022". In the report, #Team82 dissects the published vulnerabilities across the Extended Internet of Things and identifies the trends you need to prioritize. https://claroty.com/resources/reports/state-of-xiot-security-1h-2022