iot-security
Safeguard articles tagged "iot-security" — guides, analysis, and best practices for software supply chain and application security.
5 articles
IoT device security fundamentals: firmware integrity, credentials, and network isolation
One hardcoded Telnet password list built a 100,000-device botnet in 2016. A decade later, the same three failures still define most IoT breaches.
California SB-327 IoT Security Enforcement Update
A 2026 enforcement update on California SB-327, the IoT security statute that set a national precedent, and what manufacturers and integrators need to know.
Zyxel Router Command Injection: CVE-2024-40891 Exploited in the Wild
Threat actors began mass-exploiting a Telnet-based command injection flaw in Zyxel CPE routers, with over 1,500 devices compromised in botnet campaigns. Zyxel initially refused to patch.
UK Product Security and Telecommunications Infrastructure Act: Software Implications
The UK's PSTI Act bans default passwords and mandates vulnerability disclosure. Here's what it means for software embedded in connected products.
Firmware Analysis and Reverse Engineering for Security Teams
Firmware is the forgotten attack surface. Here are the techniques security teams use to uncover hidden vulnerabilities in embedded software.