APH10’s Post

A new strain of malware has been discovered targeting Internet of Things (IoT) devices, compromising their security and potentially leading to widespread vulnerabilities. #cybersecurityisalifestyle #humanfirewall #buildinghumanfirewall #Cybersecurity #IoTSecurity #Malware #CyberThreats Get your #cybermerch 👉 https://lnkd.in/gNVfcczf https://lnkd.in/g_33Btdj

✅ Join Us for an Insightful Webinar on Our IEC 62443 Certification Service! ✅ Are you ready to tackle IoT security challenges head-on? We invite you to our upcoming webinar, where we'll dive deep into the Advantech IEC 62443 Certification Service and how it can help you stay competitive in today's fast-paced market! 📅 Date: November 8, 2024 🕙 Time: 10:00-11:00 AM CET 🔗 Registration Link: https://lnkd.in/d5crJh4Y 🎤 Speakers: Michael Beine, Business Unit Manager - Cyber Security, Bureau Veritas Group Bobby Vale, Head of IoT Platforms and Ecosystem, Advantech Alex Lai, Business Development Manager, Advantech Highlights: Advantech’s embedded protection for IEC 62443 compliance. Learn how to reduce cost and time spent when certifying your applications in specific fields. Learn how workflow can be streamlined, from design and certification to implementation. This is a fantastic opportunity to enhance your knowledge and ensure your systems are secure and compliant. With the EU's official enactment of the CRA (Cyber Resilience Act), companies have even more incentive to address cybersecurity regulations and avoid unnecessary fines. 📧 Register now! Don’t miss out—secure your spot today!  #Advantech #Webinar #IEC62443 #Security #AIoT #EdgeComputing #Certification #BureauVeritas

ICYMI .... our Technical Consultant Kamran Jehangir has outlined everything you need to know about the new PSTI Act right here in our new whitepaper ⬇️ Get a copy to find out: ➡️ A layman’s definition of the PSTI Act and Regulations ➡️ What products and markets are covered by PSTI legislation ➡️ Which players in the supply chain need to urgently act and why ➡️ Three legal requirements to make your IoT product compliant ➡️ How our cybersecurity professionals can ensure your device is PSTI compliant and meets the ETSI standard #IoTSecurity #PSTIAct

Everything you need to know about the new PSTI Act is right here in our new whitepaper ⬇️ Get a copy to find out: ➡️ A layman’s definition of the PSTI Act and Regulations ➡️ What products and markets are covered by PSTI legislation ➡️ Which players in the supply chain need to urgently act and why ➡️ Three legal requirements to make your IoT product compliant ➡️ How our cybersecurity professionals can ensure your device is PSTI compliant and meets the ETSI standard #IoTSecurity #PSTIAct

This is my intepretation of recent #CrowdStrike incident Let us say you are a software company providing some kind of anti virus software (similar to CrowdStrike) and regularly release patches (its aptly called patch as it is short term solution to a leaking tap). You have to release patch implementing a fix to a exploitation of a known vulnerability. You are ready with the patch and this will be a "push" patch to be delivered to some 100,000 end points (devices) that need to be "patched". These end points are very diverse in their configurations (desktops, mobile devices and other IOT devices). How will you test if this patch will "install" on each of these 100,000 end points and what all aspects you check if everything went well post patching. Remember you are an AV software company - meaning your software operates mostly under the hood - operate at core OS/Hardware level so that impact more often than not will not be restricted to your software operation on that device - but entire device operation itself. how will you test such a patch? Let thoughts keep coming !!!! #CrowdStrike #Testing

New regulation: Cyber-security becomes mandatory for digital products in the EU Last Thursday, Oct 10, 2024, the EU Council adopted the Cyber Resilience Act (CRA). As a result, cyber-security becomes mandatory for all digital products (hardware and software) placed on the European market. The CE marking on the products will indicate the required compliance. And it is coming fast: The CRA will be published in the EU’s official journal in the coming weeks. It will enter into force twenty days after publication and apply to products 36 months later; some provisions even earlier.   If you want to learn the implications for the design of your embedded system or IoT product, my colleague Simon Künzli (supported by other ZHAW lecturers) teaches an excellent course on security in embedded systems. https://lnkd.in/ghmrPi38

Did you know that today's routers can reach up to 300 feet outdoors 📡? That's far enough for your neighbors and your neighbors' neighbors to see 👀 -even random visitors passing by 🚗... Carefully selecting your own routers and switches for your home network has some powerful security benefits: 1. 🚦 Limit the number of available IP addresses by statically assigning them. -You can still use the auto-assigning feature (DHCP), just limit the range of available IP addresses. 2. 🔢 Disable IPv6. -There are trillions and trillions of potential access points with IPv6. You should only be using IPv4 for your home network. 3. |💡📺 |<-->| 💻 🖥 | Separate your devices either physically or virtually. -IoT devices (lights, fridge, washers/dryers, etc.) are vulnerable to hackers, so place them on their own network. Utilizing the VLAN option on your router/switch can help you make this happen. 4. ⛔ Use MAC filtering. -While limiting the number of IP addresses on your network is a good start, there is still the potential for an unknown device to replace a known good device. MAC addresses are like fingerprints/DNA for devices. MAC filtering filters out devices that don't match the MAC addresses that you assign to the network. *Bonus tip: Create a network map and/or Asset list. -Identify the devices that belong on your network: Device; IP Address; MAC Address; Hostname; Location. Keep your data safe!!

🌐 That's a wrap on electronicaFair 2024! Huge shoutout to Josef Holzmayr, Head of Developer Relations, for an impactful session building embedded Linux distributions with Yocto and #Mender, highlighting the critical role of secure OTA updates in today’s regulatory landscape. With the Cyber Resilience Act (#CRA) reshaping industry standards, securing your IoT projects is no longer optional. As Josef emphasized, the time to act is now—secure OTA updates are essential for compliance and long-term resilience. Discover how OTA updates play a vital role in meeting CRA requirements: https://lnkd.in/d8rZRZfV #Electronica2024 #Yocto #CyberResilienceAct #TechInnovation

Lighting control and Smart building solutions need IoT Cyber Assurance - IASME - IoT Cyber Assurance is aligned with UK legislation and all of the 13 provisions in the ETSI EN 303 645 standard, extending beyond just the top three required for UK law. IoT Cyber Assurance Level Two certification is one of the approved ways that makes up an essential part of the framework for Secure by Design's Secure Connected Device accreditation. Mymesh solutions lead the way in wireless connected lighting control and smart building solutions. #netzero #lightingcontrol #smartbuildings #digitaltwin #emergencylighting #electricalengineers #sustainabilty

#SATC_2024 #Dayton_Ohio_USA Invitation to 2025 1st International Conference on Secure IoT, Assured and Trusted Computing (SATC) Hybrid (In-person and Virtual) URL:http://www.satcconf.com/ #22_24_February 2025 This event will serve as an interdisciplinary forum where leading researchers, engineers, and practitioners can discuss innovative solutions for securing hardware, software, and network layers, as well as ensuring information security and system-wide trust. The SATC conference will provide an opportunity for in-depth discussions on securing Computing infrastructures that underpin IoT/Edge Computing systems, ensuring the confidentiality, integrity, and availability of information across cloud and distributed environments, and addressing emerging threats in cyber and physical system space. With the convergence of IoT and edge computing, it’s critical to tackle issues such as secure embedded hardware, authentication and communication protocols, data security and privacy, and the assurance of trustworthy digital computing systems that are resilient to cyber threats. Akhtar Jamil, Fathi Amsaad, PhD, SMIEEE, Ahmed Abdelgawad https://lnkd.in/gE_73dCd