When IoT Attacks – The End of the World as We Know It?

Excerpts of my interview with Phil Muncaster @philmuncaster

InfoSecurity Magazine Q4/2017, 4 October 2017

https://www.infosecurity-magazine.com/digital-editions/digital-edition-q4-2017/

Focus on the Firmware

A cursory look at OWASP’s IoT Security Guidance will highlight just how many elements in the IoT ecosystem could be exploited. Among others, these include the web interface, network, transport encryption layer, mobile app and device firmware. The latter is a key area of focus for the prpl Foundation, a non-profit which is trying to coral the industry into taking a new hardware-based approach to IoT security. Cesare Garlati, Chief Security Strategist, claims that hackers could exploit IoT chip firmware to re-flash the image, allowing them to reboot and execute arbitrary code.

Continue reading

prpl Foundation briefs German Defense Industry leaders as part of Annual Cyber Study tour

By Art Swift

President, prpl Foundation

Screen Shot 2017-07-06 at 13.21.51

Last week, we had the privilege of meeting with a delegation from the German defense industry to share how prpl members are working to build security in to the future IoT from the silicon level up. I was joined at this briefing by Cesare Garlati, prpl’s chief security strategist, and Majid Bemanian, director of vertical markets for prpl platinum member, Imagination Technologies.

Continue reading