#iotsecurity — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #iotsecurity, aggregated by home.social.
-
The Transportation & Mobility Special Interest Group (#SIG) is building a dedicated space within the FIRST community for collaboration across the #transportation and #mobility industry on cybersecurity challenges in the IT, OT, and #IoT space.
This practitioner-focused group will help organizations share best practices, improve coordination, and develop more unified approaches to incident response across connected transportation environments and mobility technologies.
The SIG also aims to advance standards and guidelines development while helping integrate transportation and mobility-focused incident response planning into the broader FIRST framework.
If you work in transportation security, OT/IoT security, incident response, infrastructure protection, or mobility technology, we encourage you to get involved and help shape this growing community!
Learn more at: https://www.first.org/global/sigs/transport/
#FIRST #CyberSecurity #TransportationSecurity #OTSecurity #IoTSecurity
-
The Transportation & Mobility Special Interest Group (#SIG) is building a dedicated space within the FIRST community for collaboration across the #transportation and #mobility industry on cybersecurity challenges in the IT, OT, and #IoT space.
This practitioner-focused group will help organizations share best practices, improve coordination, and develop more unified approaches to incident response across connected transportation environments and mobility technologies.
The SIG also aims to advance standards and guidelines development while helping integrate transportation and mobility-focused incident response planning into the broader FIRST framework.
If you work in transportation security, OT/IoT security, incident response, infrastructure protection, or mobility technology, we encourage you to get involved and help shape this growing community!
Learn more at: https://www.first.org/global/sigs/transport/
#FIRST #CyberSecurity #TransportationSecurity #OTSecurity #IoTSecurity
-
📣 THE COUNTDOWN TO NEXUS IS ON
Join more than 250 CPS security leaders from global organizations in Washington, DC. as we tackle business resilience in the AI era.
With the cybersecurity industry at an inflection point, Nexus Conference 2026 is your opportunity to lead the way forward.
👉 Apply to attend: https://nexusconference.io
#Nexus2026 #cybersecurity #OTsecurity #IoTsecurity #industrial #healthcare #publicsector #commercial #AI #artificialintelligence #CISO
-
📣 THE COUNTDOWN TO NEXUS IS ON
Join more than 250 CPS security leaders from global organizations in Washington, DC. as we tackle business resilience in the AI era.
With the cybersecurity industry at an inflection point, Nexus Conference 2026 is your opportunity to lead the way forward.
👉 Apply to attend: https://nexusconference.io
#Nexus2026 #cybersecurity #OTsecurity #IoTsecurity #industrial #healthcare #publicsector #commercial #AI #artificialintelligence #CISO
-
📣 THE COUNTDOWN TO NEXUS IS ON
Join more than 250 CPS security leaders from global organizations in Washington, DC. as we tackle business resilience in the AI era.
With the cybersecurity industry at an inflection point, Nexus Conference 2026 is your opportunity to lead the way forward.
👉 Apply to attend: https://nexusconference.io
#Nexus2026 #cybersecurity #OTsecurity #IoTsecurity #industrial #healthcare #publicsector #commercial #AI #artificialintelligence #CISO
-
📣 THE COUNTDOWN TO NEXUS IS ON
Join more than 250 CPS security leaders from global organizations in Washington, DC. as we tackle business resilience in the AI era.
With the cybersecurity industry at an inflection point, Nexus Conference 2026 is your opportunity to lead the way forward.
👉 Apply to attend: https://nexusconference.io
#Nexus2026 #cybersecurity #OTsecurity #IoTsecurity #industrial #healthcare #publicsector #commercial #AI #artificialintelligence #CISO
-
https://www.europesays.com/uk/958955/ Alliance urges EU to rethink cyber rules for SIM tech #CyberResilience #CyberResilienceAct(CRA) #Cybersecurity #DataProtection #DeviceSecurity #DigitalResilience #eSIM #EU #Europe #Europe(European) #European #EuropeanCommission #EuropeanUnion(EU) #infosec #InternetOfThings(IoT) #IoTSecurity #NetworkSecurity #sim #SoftwareUpdates #SupplyChainSecurity #SupplyChain #TrustedConnectivityAlliance
-
Alliance urges EU to rethink cyber rules for SIM tech
Trusted Connectivity Alliance has urged European standards…
#Europe #EU #Cyberresilience #CyberResilienceAct(CRA) #cybersecurity #Dataprotection #Devicesecurity #DigitalResilience #eSIM #Europe(European) #EuropeanCommission #EuropeanUnion #EuropeanUnion(EU) #Infosec #InternetofThings(IoT) #IoTSecurity #Networksecurity #SIM #SoftwareUpdates #SupplyChain #SupplyChainSecurity #TrustedConnectivityAlliance
https://www.europesays.com/europe/41684/ -
🔥 CRITICAL: CVE-2026-42854 in arduino-esp32 (<3.3.8) enables stack buffer overflow via HTTP multipart boundary — can crash device or allow RCE. Patch ASAP by upgrading to 3.3.8! https://radar.offseq.com/threat/cve-2026-42854-cwe-121-stack-based-buffer-overflow-caa5555e #OffSeq #CVE202642854 #IoTSecurity #Espressif
-
🔥 CRITICAL: CVE-2026-42854 in arduino-esp32 (<3.3.8) enables stack buffer overflow via HTTP multipart boundary — can crash device or allow RCE. Patch ASAP by upgrading to 3.3.8! https://radar.offseq.com/threat/cve-2026-42854-cwe-121-stack-based-buffer-overflow-caa5555e #OffSeq #CVE202642854 #IoTSecurity #Espressif
-
🔥 CRITICAL: CVE-2026-42854 in arduino-esp32 (<3.3.8) enables stack buffer overflow via HTTP multipart boundary — can crash device or allow RCE. Patch ASAP by upgrading to 3.3.8! https://radar.offseq.com/threat/cve-2026-42854-cwe-121-stack-based-buffer-overflow-caa5555e #OffSeq #CVE202642854 #IoTSecurity #Espressif
-
🔥 CRITICAL: CVE-2026-42854 in arduino-esp32 (<3.3.8) enables stack buffer overflow via HTTP multipart boundary — can crash device or allow RCE. Patch ASAP by upgrading to 3.3.8! https://radar.offseq.com/threat/cve-2026-42854-cwe-121-stack-based-buffer-overflow-caa5555e #OffSeq #CVE202642854 #IoTSecurity #Espressif
-
Defending consumer web properties against modern DDoS attacks | Microsoft Security Blog
Read on HackerWorkspace: https://hackerworkspace.com/article/defending-consumer-web-properties-against-modern-ddos-attacks-microsoft-security-blog
-
📰 Mirai Variant 'xlabs_v1' Builds DDoS Botnet by Hijacking IoT Devices with Exposed ADB Ports
🚨 New Mirai-based botnet 'xlabs_v1' hijacks IoT devices & Android TVs via exposed ADB ports (TCP/5555). The botnet is used for DDoS-for-hire services, targeting Minecraft servers. #Mirai #Botnet #DDoS #IoTSecurity
-
LABScon25 Replay | Connect to the Foreign Entity to Enhance Your User Experience | FitzPatrick
-
Industrial Cybersecurity Becomes Business-Critical Priority
Q: How is Claroty pos…
#Conflict #Conflicts #War #AI #Automation #CISO #Claroty #CloudComputing #cloudsecurity #criticalinfrastructure #cyberattacks #Cybersecurity #Data #Dataprivacy #DefensiveAI #digitaltransformation #healthtechnology #industrialcybersecurity #Industry4.0 #IoMT #IoTSecurity #ItaloCalvano #Latinamerica #México #nearshoring #OTcybersecurity #Regulation&Policy #SmartCities #technology
https://www.europesays.com/2970322/ -
This 'cardputer' sits between the Raspberry Pi and Flipper Zero - but it's uniquely better
https://www.zdnet.com/article/m5stack-cardputer-adv-review/
Read on HackerWorkspace: https://hackerworkspace.com/article/this-cardputer-sits-between-the-raspberry-pi-and-flipper-zero-but-it-s-uniquely-better
-
Tracking a Drone Indoors Without GPS | ESP32 BLE RSSI
-
I Tried Building a Cheap Indoor Positioning System… So I Built a Drone Instead - CiferTech
https://cifertech.net/i-tried-building-a-cheap-indoor-positioning-system-so-i-built-a-drone-instead/
Read on HackerWorkspace: https://hackerworkspace.com/article/i-tried-building-a-cheap-indoor-positioning-system-so-i-built-a-drone-instead-cifertech
-
HackRF PortaPack Splash Screen Without Removing the SD Card
-
HackRF PortaPack Splash Screen Without Removing the SD Card
-
HackRF PortaPack Splash Screen Without Removing the SD Card
-
HackRF PortaPack Splash Screen Without Removing the SD Card
-
Giving my Raspberry Pi LTE Connectivity - 4G LTE IoT Test Lab
-
Giving my Raspberry Pi LTE Connectivity - 4G LTE IoT Test Lab
-
Giving my Raspberry Pi LTE Connectivity - 4G LTE IoT Test Lab
-
Giving my Raspberry Pi LTE Connectivity - 4G LTE IoT Test Lab
-
We’re securing systems… but ignoring the fastest growing attack surface.
While studying IoT security, one thing became clear:
It’s not the big systems that worry me anymore.
It’s the small, always-on, barely monitored devices inside the same network.
Smart cameras. Sensors. Wearables. Controllers.
Individually harmless.
Collectively… a blind spot.
The problem isn’t one vulnerability
It’s this:
• Devices that are always trusted
• Minimal visibility into what they do
• Weak or inconsistent updates
• Constant background communication
• Growing faster than we can trackAt scale, this creates something dangerous:
A network you don’t fully understand anymore
Why this matters
IoT devices are rarely the final target.
But they can become:
• Silent entry points
• Internal visibility nodes
• Pivot points between systems
• Long-term unnoticed presenceNot because they’re powerful —
but because they’re overlooked and trusted.What I’m learning
IoT security is less about the device itself…
and more about:
• How it fits into the system
• What it communicates with
• What assumptions exist around itBecause risk doesn’t always come from complexity.
Sometimes it comes from what we stop paying attention to.
I wrote a deeper breakdown on this 👇
https://dev.to/blackcipher/the-iot-blind-spot-the-part-of-the-network-we-keep-ignoring-53eg
Curious to hear your thoughts —
#CyberSecurity #IoT #IoTSecurity #InfoSec #RedTeam #ThreatIntel #EmbeddedSecurity #BlackCipher
-
We’re securing systems… but ignoring the fastest growing attack surface.
While studying IoT security, one thing became clear:
It’s not the big systems that worry me anymore.
It’s the small, always-on, barely monitored devices inside the same network.
Smart cameras. Sensors. Wearables. Controllers.
Individually harmless.
Collectively… a blind spot.
The problem isn’t one vulnerability
It’s this:
• Devices that are always trusted
• Minimal visibility into what they do
• Weak or inconsistent updates
• Constant background communication
• Growing faster than we can trackAt scale, this creates something dangerous:
A network you don’t fully understand anymore
Why this matters
IoT devices are rarely the final target.
But they can become:
• Silent entry points
• Internal visibility nodes
• Pivot points between systems
• Long-term unnoticed presenceNot because they’re powerful —
but because they’re overlooked and trusted.What I’m learning
IoT security is less about the device itself…
and more about:
• How it fits into the system
• What it communicates with
• What assumptions exist around itBecause risk doesn’t always come from complexity.
Sometimes it comes from what we stop paying attention to.
I wrote a deeper breakdown on this 👇
https://dev.to/blackcipher/the-iot-blind-spot-the-part-of-the-network-we-keep-ignoring-53eg
Curious to hear your thoughts —
#CyberSecurity #IoT #IoTSecurity #InfoSec #RedTeam #ThreatIntel #EmbeddedSecurity #BlackCipher
-
The Internet Knows Who You Are — Even Offline
-
Reflecting on Day 1 of the HTX CTF Finals here in Singapore.
I didn't win, but the technical takeaway was clear: Precision is a force multiplier.
By focusing on a high hit rate rather than just speed, I held 5th place for a good portion of the day. It’s a great reminder that in our field, being precise is a technical skill in itself.
Looking forward to the Day 2 challenges tomorrow!
#CTF #Cybersecurity #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety #HTXctf
-
Reflecting on Day 1 of the HTX CTF Finals here in Singapore.
I didn't win, but the technical takeaway was clear: Precision is a force multiplier.
By focusing on a high hit rate rather than just speed, I held 5th place for a good portion of the day. It’s a great reminder that in our field, being precise is a technical skill in itself.
Looking forward to the Day 2 challenges tomorrow!
#CTF #Cybersecurity #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety #HTXctf
-
🔒 CVE-2026-7031: HIGH-severity buffer overflow in Tenda F456 (v1.0.0.5). Remote, no user interaction needed. Exploit public, no patch yet. Limit device exposure & monitor for updates. More: https://radar.offseq.com/threat/cve-2026-7031-buffer-overflow-in-tenda-f456-f28ef6c0 #OffSeq #Vulnerability #IoTSecurity #NetSec
-
Open-Source AI Assisted Firmware Analysis - WAIRZ
-
Raspberry Pi OS Tightens Sudo Security with Password Mandate
Raspberry Pi OS just got a major security boost: the latest release now requires a password by default when using the sudo command, putting an end to its previously open-door policy and adding an extra layer of protection to your device. This simple yet significant change means you'll need to enter a password to access sudo, giving…
#RaspberryPiOs #SudoSecurity #PasswordMandate #LinuxSecurity #IotSecurity
-
DeskUp Pro smart standing desk controller integrates with Home Assistant and Homey Pro Smart Home hubs - CNX Software
Read on HackerWorkspace: https://hackerworkspace.com/article/deskup-pro-smart-standing-desk-controller-integrates-with-home-assistant-and-homey-pro-smart-home-hubs-cnx-software
-
Critical flaw in wolfSSL library enables forged certificate use
Read on HackerWorkspace: https://hackerworkspace.com/article/critical-flaw-in-wolfssl-library-enables-forged-certificate-use
-
The Rise of Autonomous Drone Swarms | VICE: Cyberwar | Blueprint
-
Qualified for HTX CTF Finals at DEF CON Singapore 🇸🇬 - 13th in the online round, 65/74 solved. 🔥
Both tracks were AI Security and IoT Exploitation. Neither is my daily work. Meant learning how prompt-driven systems break, how MQTT/CoAP expose attack surface, and how one forgotten device pivots into everything else.
All under the clock. ⏱️ Finals end of April. 💪
#CTF #Infosec #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety
-
Qualified for HTX CTF Finals at DEF CON Singapore 🇸🇬 - 13th in the online round, 65/74 solved. 🔥
Both tracks were AI Security and IoT Exploitation. Neither is my daily work. Meant learning how prompt-driven systems break, how MQTT/CoAP expose attack surface, and how one forgotten device pivots into everything else.
All under the clock. ⏱️ Finals end of April. 💪
#CTF #Infosec #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety
-
Qualified for HTX CTF Finals at DEF CON Singapore 🇸🇬 - 13th in the online round, 65/74 solved. 🔥
Both tracks were AI Security and IoT Exploitation. Neither is my daily work. Meant learning how prompt-driven systems break, how MQTT/CoAP expose attack surface, and how one forgotten device pivots into everything else.
All under the clock. ⏱️ Finals end of April. 💪
#CTF #Infosec #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety
-
Qualified for HTX CTF Finals at DEF CON Singapore 🇸🇬 - 13th in the online round, 65/74 solved. 🔥
Both tracks were AI Security and IoT Exploitation. Neither is my daily work. Meant learning how prompt-driven systems break, how MQTT/CoAP expose attack surface, and how one forgotten device pivots into everything else.
All under the clock. ⏱️ Finals end of April. 💪
#CTF #Infosec #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety
-
Qualified for HTX CTF Finals at DEF CON Singapore 🇸🇬 - 13th in the online round, 65/74 solved. 🔥
Both tracks were AI Security and IoT Exploitation. Neither is my daily work. Meant learning how prompt-driven systems break, how MQTT/CoAP expose attack surface, and how one forgotten device pivots into everything else.
All under the clock. ⏱️ Finals end of April. 💪
#CTF #Infosec #AISecurity #IoTSecurity #DEFCON #HTXsg #DEFCONSG #EthicalHacking #CaptureTheFlag #PublicSafety
-
Fitness Equipment Exposes Weak Link in Gym Security
A recent security mishap at a gym serves as a stark reminder of the importance of safeguarding sensitive information, as a technician's careless mistake - stapling configuration details to a cupboard - left fitness equipment vulnerable to exploitation by mischief makers. This embarrassing blunder highlights the need for vigilance in…
#GymSecurity #PhysicalSecurity #IotSecurity #EmergingThreats #FitnessEquipment
-
Reversing Malware with AI - SuperBox S6 Pro App Store Analysis
-
Hacking on the Jiophone - From getting a rootshell to running Doom
https://sivaplaysmc.github.io/posts/doom-on-jiophone/
Short summary: https://hackerworkspace.com/article/hacking-on-the-jiophone-from-getting-a-rootshell-to-running-doom
-
CVE-2026-1679: HIGH severity buffer overflow in Zephyr RTOS (all versions). Local attackers can trigger kernel memory corruption via eswifi socket offload driver. Patch ASAP, enforce access controls. Details: https://radar.offseq.com/threat/cve-2026-1679-buffer-copy-without-checking-size-of-5ca8f17f #OffSeq #ZephyrRTOS #IoTSecurity #CVE
-
CVE-2026-1679: HIGH severity buffer overflow in Zephyr RTOS (all versions). Local attackers can trigger kernel memory corruption via eswifi socket offload driver. Patch ASAP, enforce access controls. Details: https://radar.offseq.com/threat/cve-2026-1679-buffer-copy-without-checking-size-of-5ca8f17f #OffSeq #ZephyrRTOS #IoTSecurity #CVE
-
CVE-2026-1679: HIGH severity buffer overflow in Zephyr RTOS (all versions). Local attackers can trigger kernel memory corruption via eswifi socket offload driver. Patch ASAP, enforce access controls. Details: https://radar.offseq.com/threat/cve-2026-1679-buffer-copy-without-checking-size-of-5ca8f17f #OffSeq #ZephyrRTOS #IoTSecurity #CVE
-
CVE-2026-1679: HIGH severity buffer overflow in Zephyr RTOS (all versions). Local attackers can trigger kernel memory corruption via eswifi socket offload driver. Patch ASAP, enforce access controls. Details: https://radar.offseq.com/threat/cve-2026-1679-buffer-copy-without-checking-size-of-5ca8f17f #OffSeq #ZephyrRTOS #IoTSecurity #CVE