Tag: incident response

State of Automotive Cybersecurity thumbnail

What Are Today’s Top Automotive Cybersecurity Challenges?

It hasn’t been an easy year for cybersecurity pros in the automotive industry. Hackers are increasingly setting their sites on connected automotive products – David Colombo’s much-publicized ethical Tesla hack, a ransomware attack against Honda, and a suspected attack on a local Toyota supplier are only a few examples from the rapidly evolving threat landscape. […]

Cybersecurity vs. Time-to-market: Medical Device Pros Weigh In

In a highly-regulated sector like medical device manufacturing, time-to-market needs to be carefully balanced with security and compliance. In addition to the aggressive timeframes development and product teams are tasked with to get new innovation to the market, medical device manufacturers (MDMs) are also responsible for the security of connected systems and processes that have […]

Intro to Automotive Cybersecurity Regulations

As vehicles have come to rely heavily on software and an increasingly complex software supply chain, the cyber threat landscape continues to evolve, and security and safety standards are more critical than ever. Industry-wide recognition of automotive cybersecurity risks has pushed regulators and industry leaders to double-down on regulation. The recent adoption of UNECE WP.29 […]

Is There Such a Thing as 100% Cybersecurity Readiness? Medical Devices Pros Weigh In

Originally published on BeepingComputer, May 25, 2022 As medical devices become more connected and reliant on software, their codebase grows both in size and complexity, and they are increasingly reliant on third-party and open source software components. This forces security pros to address today’s rapidly evolving threat landscape. In the hopes of helping security professionals […]

Use cases graphic

6 Ways to Leverage Cybellum’s Product Security Platform Throughout the Product Lifecycle

As connected products and devices become increasingly software reliant, and the cyber threat landscape continues to evolve, manual and one-off security testing for devices is no longer an option. Today’s security standards and regulation demand product security teams address compliance and security throughout the entire product lifecycle – from design and development till devices’ end-of-life. […]

2022 Medical Device Cybersecurity Trends and Predictions

Is it Finally Prime Time for Medical Device Cybersecurity?

If you want to see where industry priorities lie — the general consensus is that you should follow the money. Well, between 2020 and 2025, the Healthcare industry is projected to spend $125B on cybersecurity. There are many reasons driving the attention that medical device security is receiving. New regulations such as the FDA premarket […]

Peacetime PSIRT Activities – Getting the Most of Your PSIRT Investment

Originally published on Security Magazine, December 17th, 2021 The Product Security Incident Response Team (PSIRT) is not a firefighter team, but they should be your fire marshal. Your PSIRT is more than a first response team that only activates when an incident occurs. Businesses get the most out of their investment in this highly skilled […]

How to Protect Automotive Over-the-Air (OTA) Updates

These are exciting times for car manufacturers. At-home services are increasing, with car manufacturers enabling over-the-air (OTA) updates that can upgrade a vehicle with new features, or even fix faulty vehicle software by remote. The data speaks for itself. According to a comprehensive research report by Market Research Future (MRFR), the market is projected to […]

VSOC Vulnerability Management Fundamentals

The risk of a connected vehicle being cyberattacked is the highest it has ever been, due to new systems’ public digital blueprint and entry points, and the growing sophistication of attackers. A VSOC (Vehicle SOC) is a key component in managing these risks, as it identifies vulnerabilities and takes action to dispose of them. Let’s […]

Building A Successful PSIRT from the Ground Up – Part 1: People

This is Part 1 of our blog series about building a Product Security Incident Response Team from the gournd up. The Colonial Pipeline cyber security breach in 2021 marked a watershed moment in IT security. Though this attack shut down the largest oil pipeline in the U.S. and resulted in a $4.4 million ransom payment, […]

Subscribe to our blog to stay updated