archive archive archive

Study Finds Sloppy Security for Internet-Connected Devices

Consumer devices that connect to the Internet are plagued by poor encryption and backdoors that could allow easy access to cybercriminals, according to new research being presented this week at the 23rd Usenix Security Symposium in San Diego. Researchers from Eurecom, a French graduate school, conducted the first large-scale analysis of firmware — the coding that manages interactions between software and hardware — focusing primarily on wireless routers, printers and security cameras. For the study, they developed a web crawler […]


Businesses Are Falling Behind on Cybercrime

Cybercrimes continue to increase in both regularity and financial impact, but the security apparatuses of most major companies still can't rival “the persistence and technological skills of their cyber adversaries,” according to a study published jointly by the U.S. Secret Service, the CERT Division of the Software Engineering Institute at Carnegie Mellon University, PwC and CSO Magazine. Only 38 percent of companies studied prioritize security investments based on risk and impact to business strategy. Researchers surveyed 500 executives of US […]


RAND: Shortage of Cybersecurity Pros Puts Data at Risk

A shortage of cybersecurity experts has severely compromised the federal government's ability to protect against cybercrime, according to a new study by the RAND Corporation, but researchers caution against a drastic push to expand the field. RAND, a non-profit think tank, examined the labor market for cybersecurity professionals, in particular for positions within the federal government, and found that “the demand for cybersecurity professionals began to overtake supply in 2007, largely due to increased reports of large-scale hacking.” With demand […]