The House of Representatives has unanimously passed a bipartisan bill setting minimum security requirements for Internet of Things devices connected to federal networks. The next step: get the Senate to vote on its version of the bill.
Hundreds of millions of embedded and enterprise devices are vulnerable to a long list of flaws in the Treck TCP/IP stack.
The Urgent/11 vulnerabilities in the IPnet stack affect a much broader range of devices than originally thought.
An extensive study by the Cyber Independent Testing Lab of IoT device firmware shows many vendors removing hardening technologies over time.
The Silexbot malware is compromising IoT devices and destroying their file systems and rebooting them, in an apparent attempt to stop botnet controllers from owning them.