Blog

DeviceLine Radio Show: Jonathan Knudson On Fuzzing Devices

June 25, 2014

The DevliceLine Radio Show, a new broadcast from the Mocana Corporation, provides a recap of the week’s embedded security news and analysis as well as interviews with industry experts who can provide context. This week host Robert Vamosi, CISSP and Senior Analyst, speaks with Jonathan Knudsen, Principal Security Engineer at Codenomicon and author, about his work fuzzing embedded devices. Like fuzzing software, the process of fuzzing devices includes creating malformed input and recording the responses. Knudson talked about the most common errors found with devices, and the increasing interest by certain industries in knowing the potential vulnerabilities with its products in advance of deployment.

You can hear the radio show here

Read More

Celebrating Our 1000th Blog Post By Benefiting A Worthy Charity

June 24, 2014

The premier blog for embedded security reached a milestone today: This is DeviceLine's 1000th blog post. And it is our fourth anniversary as well.

Read More

Podcast: James Burns on Internet-Accessible Device Vulnerabilities

June 24, 2014

In this week’s podcast, Mocana’s Senior Security Architect James Burns discusses Internet-accessible device vulnerabilities with host Robert Vamosi.

On May 16, researcher Justin Cacak, senior security engineer at Gotham Digital Science, told Wired.com he was able to view content from cameras made by MicroDigital, HIVISION, CTRing and a variety of other cameras that are rebranded. Cacak worked with Rapid7 to develop testing tools for its Metasploit product, allowing companies to see whether their systems are vulnerable. The tool can also be used by criminal hackers to identify targets. In January of this year, the researchers at Rapid7 announced remote vulnerabilities in teleconferencing systems.

Read More

Podcast: James Burns Discusses The Rise of Android Malware

June 24, 2014

In this week's podcast, Mocana's Senior Security Architect James Burns discusses Android security with host Robert Vamosi.

Read More

Podcast: James Burns On Android Security

June 24, 2014

This week’s podcast, James Burns, Senior Security Architect at Mocana, discusses Android security with Robert Vamosi, specifically a proof of concept that allows security updates during the charging process.

In a paper released earlier this week, researcher David Weinstein from the MITRE Corp. argues that the common battery charger could soon be used “to measure, attest, and remediate the integrity” of the mobile device. His reference prototype is an Android-based Nexus S mobile phone.

Read More
COMMENTS