iot security

The Cybersecurity and Infrastructure Security Agency (CISA) has once again sounded the alarm on the persistent threat posed by known exploited vulnerabilities, adding two high-profile CVEs to its renowned Known Exploited Vulnerabilities (KEV) Catalog. This update serves both as a critical...

On June 10, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released four new advisories addressing significant vulnerabilities found in a variety of Industrial Control Systems (ICS) and related medical and fleet management platforms. These advisories echo the growing...

More than ever, the intersection of convenience and security is top of mind for organizations and individuals alike, especially when technologies intended for safety can themselves introduce critical risks. The recent vulnerabilities discovered in SinoTrack GPS receivers—devices extensively used...

In the rapidly shifting terrain of enterprise security, the imperative for just-in-time (JIT) access has never been more pressing. As organizations contend with relentless waves of cyber threats—many of them leveraging tactics far beyond the reach of yesterday’s defenses—security leaders face a...

A recent massive data breach has exposed over 184 million user records, compromising sensitive information from major platforms such as Apple, Google, Meta, Microsoft, Instagram, and Snapchat. The breach includes emails, passwords, and authorization URLs, all stored in plain text, making them...

Schneider Electric’s Wiser Home Automation lineup, celebrated within the smart building and energy management sectors, is now facing a critical security reckoning. Recent advisories have revealed that two notable products—Wiser AvatarOn 6K Freelocate and Wiser Cuadro H 5P Socket—are vulnerable...

As cyber threats continue their relentless evolution, organizations face mounting pressure to strengthen their vulnerability management strategies. In today’s interconnected digital landscape, overlooking a single critical flaw can cascade into costly breaches, reputational harm, and operational...

In a move signaling Microsoft’s ongoing commitment to secure device connectivity for the Internet of Things (IoT), the May 2025 Azure Sphere update introduces a collection of targeted enhancements designed to fortify security, streamline legacy migration workflows, and give IT administrators...

Azure Sphere continues to evolve as Microsoft pushes to secure the future of the Internet of Things (IoT). With billions of smart devices connecting to networks globally, security is paramount. The release of the May 2025 Azure Sphere Services update highlights Microsoft’s ongoing commitment to...

Device Authority has announced a significant enhancement to its identity security platform through the integration of KeyScaler AI with Microsoft Copilot. This collaboration aims to bolster how organizations manage and respond to cyber threats, particularly across extensive networks of connected...

May 20, 2025 marked a significant moment in the ongoing quest for industrial cybersecurity resilience as the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released thirteen new Industrial Control Systems (ICS) advisories. These advisories serve not only as a warning to operators...

Across contemporary smart homes, the proliferation of robotic vacuum cleaners has transformed daily routines, promising convenience, automation, and hands-free cleanliness. However, as these devices become more technologically sophisticated and deeply integrated into residential networks, their...

Organizations tasked with securing sprawling fleets of connected devices are facing an increasingly complex, relentless cybersecurity landscape. Threat actors are moving faster, automation is powering both attacks and defenses, and in the midst of it all, security analysts are expected to...

Getac, a renowned name in the rugged computing sector, is set to make significant waves in the intersection of artificial intelligence and industrial hardware with the unveiling of its new rugged AI PC, purpose-built to meet Microsoft Azure’s exacting standards. With a projected launch set for...

As Microsoft approaches its official end-of-support date for Windows 10, currently set for October 14, 2025, organizations across industries are faced with a critical crossroads. The impending sunsetting of Windows 10 is about much more than simply upgrading operating systems—it’s a pivotal...

When the U.S. Cybersecurity and Infrastructure Security Agency (CISA) updates its Known Exploited Vulnerabilities (KEV) Catalog, the entire cybersecurity community—from federal agencies to private enterprises—takes notice. The latest additions to this catalog, CVE-2024-6047 and CVE-2024-11120...

In recent years, the off-highway equipment sector—encompassing industries such as construction, agriculture, mining, utilities, forestry, and specialized vehicles—has witnessed a rapid acceleration toward digital transformation, powered by the twin engines of electrification and the Internet of...

BrightSign, a renowned manufacturer of digital signage players, recently made headlines in the cybersecurity community following the publication of a critical advisory by the Cybersecurity and Infrastructure Security Agency (CISA). At the heart of the advisory lies CVE-2025-3925, a privilege...

The ever-evolving landscape of industrial cybersecurity has again been put to the test, this time by the discovery of a significant vulnerability in the Milesight UG65-868M-EA industrial gateway. Identified as CVE-2025-4043, this flaw has broad implications across critical infrastructure sectors...

When news breaks of a critical security flaw in devices that power digital signage across industries and continents, it sends shockwaves through the technology community. BrightSign Players, a widely deployed line of digital signage media players, recently found themselves at the center of such...