The Cybellum BLOG

Cracking AUTOSAR- A Missing Piece in the Product Security Puzzle

Securing automotive software is crucial to life long product security in the field…. But how can you secure a mystery box? As puzzling as it may be to call an AUTOSAR ECU a ‘mystery box’, this is essentially how many of today’s automotive manufacturers program their ECUs. Over the years, this closed system was enough […]

Delorean Cybellum

Back to the Future Proofing — Shifting Right for Full Product Lifecycle Cybersecurity

Future proofing can feel a bit like Marty Mcfly’s first journey to the future. It’s fast paced and overwhelming. This is somewhat similar for Medical Device Manufacturers (MDM) and automotive manufacturers who are navigating the ever evolving world of cybersecurity to support their software-driven approach. As both industries work hard to implement proper cybersecurity measures, […]

Cybellum Announces Solution for AUTOSAR-Based Components

For the first time, OEMs and their suppliers can have full visibility and manage vulnerabilities for all components within a single platform Detroit, Michigan, September 7, 2022 – Cybellum, a leading provider of the Product Security Platform for automotive manufacturers, announced today at the 6th Annual Auto-ISAC Summit, a first-of-its-kind solution for greater visibility and […]

How We Found CVE-2022-38132 –
Linksys MR8300 Zero Day

Recently, we discovered a new zero-day vulnerability in Linksys MR8300 router, affecting the latest version 1.0 of the router’s firmware. After reporting and disclosing the issue with Linksys, the vulnerability was fixed, and the newer firmware version is no longer vulnerable. As a CVE numbering authority, we also reported this issue, now published as CVE-2022-38132, […]

Platfrom vs. tools thumbnail

Why Security Pros Are Choosing a Unified Product Security Platform Over Generic Security Tools

As the connected devices and products we rely on have become increasingly software-reliant, securing them against cybersecurity and compliance risks has become a major concern for product security pros. Today’s evolving cybersecurity regulation for software-driven devices and products addresses the expanding threat landscape. As a result, companies are investing more and more in technologies that […]

What Are Today’s Top Automotive Cybersecurity Challenges?

It hasn’t been an easy year for cybersecurity pros in the automotive industry. Hackers are increasingly setting their sites on connected automotive products – David Colombo’s much-publicized ethical Tesla hack, a ransomware attack against Honda, and a suspected attack on a local Toyota supplier are only a few examples from the rapidly evolving threat landscape. […]

Cybersecurity vs. Time-to-market: Medical Device Pros Weigh In

In a highly-regulated sector like medical device manufacturing, time-to-market needs to be carefully balanced with security and compliance. In addition to the aggressive timeframes development and product teams are tasked with to get new innovation to the market, medical device manufacturers (MDMs) are also responsible for the security of connected systems and processes that have […]

5 Key Insights from the IMDRF Draft on Principles and Practices for Medical Device SBOMs

Recent years have shown an alarming increase in cyber attacks geared towards the healthcare sector. Just last year alone, the FBI reported that 148 ransomware attacks successfully penetrated healthcare organizations– more than any other industry. While there are many steps that can be taken, from securing the IT infrastructure to implementing better credential security practices, […]

1 2 9 10

Subscribe to our blog to stay updated

READY TO TAKE PRODUCT SECURITY TO THE NEXT LEVEL?

Book a demo