Frank Crast, Author at Securezoo

How a University Fought Off an IoT Attack and 12 Lessons Learned

Leave a Comment / Cybersecurity Attacks, Internet of Things (IoT), Network Security / Frank Crast / February 14, 2017

The Verizon security team recently announced the first Data Breach Digest, a series of 18 cybercrime cases the team investigated. The Verizon team starts with a sneak peek of one of the case studies that describes how a university was attacked by an IoT botnet consisting of over 5,000 infected hosts. The study concludes with 12 good lessons learned from the attack.

How a University Fought Off an IoT Attack and 12 Lessons Learned Read More »

New Locky ransomware campaign

Cybersecurity Attacks, Malware, Phishing / Frank Crast / January 31, 2017 / AppRiver, Locky, Lukitus, phishing, Ransomware

A new malware campaign was responsible for sending 23 million emails containing Locky ransomware in just 24 hours earlier this week.

New Locky ransomware campaign Read More »

Secure Authorization, Authentication and Access Control for IoT

Application Security, Cybersecurity Articles, Identity & Access Management, Internet of Things (IoT) / Frank Crast / November 20, 2016 / Access Control, authentication, Authorization, botnet, CSA, DDoS, IOT

To help organizations prepare for Internet of Things (IoT) threats, we outline some key security recommendations for IoT authorization, authentication and access control.

Secure Authorization, Authentication and Access Control for IoT Read More »

Improving Data Security with Secure Communications, Applications and APIs for IoT

Application Security, Cloud Security, Cybersecurity Articles, Internet of Things (IoT) / Frank Crast / November 10, 2016 / API, AppSec, bluetooth, CCTV, certificate, CSA, DDoS, IOT, REST

Security firm Sucuri warned back in June how compromised CCTV devices were used in multiple denial-of-service (DDoS) attacks every day. In the report, nearly 25,000 compromised devices from all over the world were used in various attacks on small businesses.

Improving Data Security with Secure Communications, Applications and APIs for IoT Read More »

Hardware-based Security Controls for IoT

Leave a Comment / Cybersecurity Articles, Internet of Things (IoT) / Frank Crast / November 9, 2016 / Cloud, Crypto, CSA, DDoS, FIPS, IOT, UART, Zeroization

In this article, we highlight some key points from a recent Cloud Security Alliance (CSA) IoT report, to include hardware-based controls to enhance security of IoT products. The CSA IoT Working Group report, is titled “Future-proofing the Connected World: 13 Steps to Developing Secure IoT Products.”

Hardware-based Security Controls for IoT Read More »

How to Establish a Framework, Platform Security and Data Protections for IoT

Cybersecurity Articles, Internet of Things (IoT), Standards & Guidelines / Frank Crast / November 8, 2016 / Cloud, CSA, Data Protection, Framework, IOT

In this article, we highlight some key points from a recent Cloud Security Alliance (CSA) IoT Working Group report, “Future-proofing the Connected World: 13 Steps to Developing Secure IoT Products,” to include guidance on how to establish a framework, platform and privacy protections to enhance security of IoT products.

How to Establish a Framework, Platform Security and Data Protections for IoT Read More »

Cyber Attacks Drive Need for IoT Security Standards

Cloud Security, Cybersecurity Articles, Internet of Things (IoT) / Frank Crast / November 6, 2016 / Cloud, CSA, IOT

A working group from the Cloud Security Alliance (CSA) published a report to help guide Internet of Things (IoT) developers and designers with security controls in 13 key areas to improve security in IoT products. The security guidance covers secure development, platform security, data/privacy protection, key management and secure communications, just to name a few.

Cyber Attacks Drive Need for IoT Security Standards Read More »