OWASP IoT Top 10 Series: Weak or Hardcoded Password Policy OWASP
In the last blog we had explored OWASP IoT Top 10 vulnerabilities overview, now we will explore the impact of each of these OWASP vulnerabilities on IoT technologies and product…
Tag: IoT Security
Tag Archive
OWASP Top 10 Vulnerabilities IoT Security: Lack of Physical Hardening
With ever increases attack surfaces with IoT devices, physical hardening is also one of the important aspects of IoT Security. Many times these devices are being part of critical infrastructure…
What are IoT Security Challenges?
Internet of things (IoT) is the network of devices connected over the internet which enables them to communicate with each other and exchange data over the network.
CAN Bus protocol Penetration testing and forensics
CAN (Controller Area Network) is a vehicle bus protocol standard which allows microcontrollers and ECU (electronic control units) to communicate which each other without a host computer. It is a…
Reading data from EEPROM without desoldering
In IoT/Hardware security it is a common practice of dumping firmware/bootloader data in order to perform reverse engineering for closed source system applications.
Learn about IoT Device Penetration Testing
A year ago, when I was fresher in the term of IoT security, I was very curious about the approaches for penetration testing on smart devices. I remember the day…
How to Start IoT device Firmware Reverse Engineering?
IoT device Firmware Reverse Engineering: It is a process to understand the device architecture, functionality and vulnerabilities present in the device incorporating different methods.
FB50 Smart Lock Vulnerability Disclosure (CVE-2019-13143)
Our security engineers found vulnerabilities in the FB50 smart lock mobile application. An information disclosure vulnerability chained together with poor token management led to a complete transfer of ownership of…