Friday, July 11, 2014
An example of the “Internet of Things with Malware”
Malware hidden in Chinese inventory scanners targeted logistics, shipping firms
Financial and business information was stolen from several shipping and logistics firms by sophisticated malware hiding in inventory scanners manufactured by a Chinese company.
The supply chain attack, dubbed “Zombie Zero,” was identified by security researchers from TrapX, a cybersecurity firm in San Mateo, California, who wrote about it in a report released Thursday.
TrapX hasn’t named the Chinese manufacturer, but said that the malware was implanted in physical scanners shipped to customers, as well as in the Windows XP Embedded firmware available for download on the manufacturer’s website.
“It can't happen here.”
Critical Infrastructure Firms Lag Behind in Cyber-Attack Defenses
Security teams at critical infrastructure firms have little trouble understanding that their networks are vulnerable. But the companies themselves have failed to make security a priority, according to a survey of nearly 600 security executives by the Ponemon Institute published on July 10.
External attackers and malicious or negligent employees managed to compromise two-thirds of the companies' networks in the past 12 months, leading to the loss of data or a disruption in operations, according to the report, Critical Infrastructure: Security Preparedness and Maturity, which was funded by technology firm Unisys. About 57 percent of respondents believe that their industrial control systems are at risk from cyber-attacks.
Despite the recognition of cyber-attacks as a threat, most critical-infrastructure firms are not focused on security, according to the survey. Only 28 percent of security practitioners stated that their firms considered security a top-five priority, the study found.
Something for my Computer Security and Computer Forensics students. Perhaps we could extend this to include Tools & Technques?
NGOs Launch Digital First Aid Kit
by Sabrina I. Pacifici on Jul 10, 2014
Via EFF – “When faced with a digital emergency—whether someone has hijacked your social media account or your website is being DDoSed—can be difficult for non-technical people to discern what the problem is and what the appropriate next steps may be for seeking help. To help fill this niche in the universe of privacy and security guides, a group of NGOs ( including EFF, Hivos, Internews, VirtualRoad, and CIRCL) have teamed up to write a guide that combines advice for self-assessment with advice for “first responders” to help non-technical users all over the world identify and respond to their digital emergencies. The Digital First Aid Kit aims to provide preliminary support for people facing the most common types of digital threats. The Kit offers a set of self-diagnostic tools for human rights defenders, bloggers, activists and journalists facing attacks themselves, as well as providing guidelines for digital first responders to assist a person under threat.”
“If the FAA gives us a hard time, we'll just buy a small country where we can fly all the drones we want.”
Six Things You Need To Know About Amazon's Drones
(Related) You need a drone to map an estate the size of this one.
Martha Stewart Uses Drones To Take Pictures Of Her Farm
Stewart posted the photos on her blog Wednesday — 31 “amazing aerial photos of my farm” taken with a “new toy,” a DJI Phantom flying camera. She said the drone is “lots of fun to play with and take[s] extraordinary photos.”
Sounds impressive, but I doubt that well run small businesses have significant amounts of capital tied up in receivables.
Obama Gets 26 Companies Committed to Help Suppliers
President Barack Obama will announce today that 26 companies including Apple Inc., Johnson & Johnson and Coca-Cola Co. are committed to speed payments to their suppliers that are small businesses.
The White House said in a statement released this morning that the faster payments will provide more working capital for suppliers to invest in new equipment and new hiring. The participants also have the option to offer financing to help suppliers cut their costs.
Interesting discussion with my students last night. No agreement on how much to tip and some interesting variations as a result.
Calculate Tips And Split Bills With These Beautiful Smartphone Apps
Don’t let your lack of mental math skills embarrass you when the bill hits the table. Whip out your smartphone and fire up Gratuity for iOS or Perfect Tip for Android; they’re simple enough to work quickly and gorgeous enough to be the talking point.
My students would like these, if they could remember where they made a note about them...
Try These 3 Beautiful Note-Taking Apps That Work Offline