Menu
Close
Products
Solutions
Company
About
Research Team
Press Releases
In the News
Contact Us
Careers
Resources
Practical Guides
Datasheets
Use Cases
Blog
VDOO Certified Security Engineer
book a demo
\\ book a demo
The VDOO Blog
Fill in your email below to subscribe
to our monthly device security newsletter
Vulnerability Research
August 10, 2020
Follow the Data: A Hidden Directory Traversal Vulnerability in QNX Slinger
A critical vulnerability in the QNX operating system has been discovered using VDOO’s automated analysis platform. Marked as CVE-2020-6932 with CVSSv3 10, this directory traversal vulnerability affects the QNX Slinger web server.
Vulnerability Research
August 9, 2020
VDOO Joins the CVE Program as a CNA to Help Track and Mitigate Device Security Vulnerabilities
As a CVE Numbering Authority (CNA), VDOO can now help external researchers coordinate device vulnerability disclosures
IoT Ecosystem
July 14, 2020
Device Security Newsletter - July 2020
Discover one of the most interesting vulnerabilities of the year and many more of the latest device attacks, vulnerabilities and regulations in the latest edition of our device security newsletter.
IoT Ecosystem
July 1, 2020
Medical Device (IoMT) Cybersecurity 101
In this article, we look into some considerations which place the Internet of Medical Things (IoMT) apart from other verticals and describe some of the best ways to address the resulting compliance needs with automated tools
Vulnerability Research
June 17, 2020
The Case of BusyBox Wget: A Long Overdue Fix
To address the poor security state of the connected device market developers need to implement reasonable security measures which can establish a first line of defense, instead of sacrificing security in favor of functionality and releasing insecure code.
IoT Ecosystem
June 9, 2020
Device Security Newsletter - June 2020
May brought with it very interesting attacks and vulnerabilities. Read on to learn about a Bluetooth vulnerability that threatens billions of devices, unique Linux malware, source code leaks, new IoT labels, and much more
IoT Ecosystem
June 3, 2020
NERC CIP Industrial Cybersecurity Standards: What You Need to Know Before the Deadline
Industrial device and software vendors beware - new cybersecurity standards are coming into effect in just a few months with the regulatory enforcement capabilities required to impose heavy monetary fines on violators.
Vulnerability Research
May 24, 2020
What Can Be Learned from the Recent HKSP Vulnerability
Even highly experienced developer groups that directly deal with software security may introduce very simple and easily exploitable bugs. A procedure must be put in place that requires a complete examination and security assessment of the full product.
IoT Ecosystem
May 18, 2020
Device Security Newsletter - May 2020
Dark Nexus is the name of a new emerging IoT botnet that is used to launch DDoS attacks. The botnet spreads using exploits and launching credential stuffing attacks against a broad range of IoT devices including routers, video recorders and thermal cameras
Load More
