DeviceLine Radio Show: Jonathan Knudson On Fuzzing Devices

By Robert Vamosi | 1/10/13 10:21 PM

The DevliceLine Radio Show, a new broadcast from the Mocana Corporation, provides a recap of the week’s embedded security news and analysis as well as interviews with industry experts who can provide context. This week host Robert Vamosi, CISSP and Senior Analyst, speaks with Jonathan Knudsen, Principal Security Engineer at Codenomicon and author, about his work fuzzing embedded devices. Like fuzzing software, the process of fuzzing devices includes creating malformed input and recording the responses. Knudson talked about the most common errors found with devices, and the increasing interest by certain industries in knowing the potential vulnerabilities with its products in advance of deployment.

You can hear the radio show here

Read More >

Celebrating Our 1000th Blog Post By Benefiting A Worthy Charity

By Robert Vamosi | 9/24/12 10:21 PM

The premier blog for embedded security reached a milestone today: This is DeviceLine's 1000th blog post. And it is our fourth anniversary as well.

Read More >

Podcast: James Burns on Internet-Accessible Device Vulnerabilities

By Robert Vamosi | 5/25/12 5:36 AM

In this week’s podcast, Mocana’s Senior Security Architect James Burns discusses Internet-accessible device vulnerabilities with host Robert Vamosi.

On May 16, researcher Justin Cacak, senior security engineer at Gotham Digital Science, told he was able to view content from cameras made by MicroDigital, HIVISION, CTRing and a variety of other cameras that are rebranded. Cacak worked with Rapid7 to develop testing tools for its Metasploit product, allowing companies to see whether their systems are vulnerable. The tool can also be used by criminal hackers to identify targets. In January of this year, the researchers at Rapid7 announced remote vulnerabilities in teleconferencing systems.

Read More >

Podcast: James Burns Discusses The Rise of Android Malware

By Robert Vamosi | 5/4/12 4:15 AM

In this week's podcast, Mocana's Senior Security Architect James Burns discusses Android security with host Robert Vamosi.

Read More >

Podcast: James Burns On Android Security

By Robert Vamosi | 4/27/12 2:16 AM

This week’s podcast, James Burns, Senior Security Architect at Mocana, discusses Android security with Robert Vamosi, specifically a proof of concept that allows security updates during the charging process.

In a paper released earlier this week, researcher David Weinstein from the MITRE Corp. argues that the common battery charger could soon be used “to measure, attest, and remediate the integrity” of the mobile device. His reference prototype is an Android-based Nexus S mobile phone.

Read More >

DeviceLine Podcast for January 13, 2012

By Robert Vamosi | 1/13/12 5:58 AM

... And we're back on the air.

Read More >

Smart Meters Hacked, Part Two

By Robert Vamosi | 1/10/12 4:30 AM

Yesterday, DeviceLine talked about two German researchers who could intercept and decipher what videos you were watching by eavesdropping on your smart meter. Today, DeviceLine is talking about a more serious concern: spoofing energy usage data from your smart meter.

Read More >

Smart Meters Reveal Movie and TV Viewing Habits

By Robert Vamosi | 1/9/12 3:59 AM

German researchers, presenting at the 28th Chaos Communication Congress (28c3), say they can guess what's on your digital TV based on unencrypted signals from certain Smart Meters.

Read More >

Senators Want Better Medical Device Safety

By Robert Vamosi | 12/19/11 3:46 AM

Three US Senators have introduced a bi-partisan Medical Device Patient Safety Act to stem medical device recalls and shore up existing FDA policy on product approval. Already one medical technology group is opposed.

Read More >

Google's NFC Chips Vulnerable

By Robert Vamosi | 6/21/11 6:28 AM

Less than one month after announcing Google Wallet, the company is working to fix what one researcher characterized as a "stupid software bug" within the NFC chips on the Nexus S mobile phone.

Read More >