Palitronica Inc.’s Post

The convergence of OT and IoT leaves more connected OT/IoT devices ignored, outdated and unmanaged, and at a greater risk of exploitation by attackers. New findings from Forescout Technologies Inc. Research - Vedere Labs and Finite State reveal that this problem is growing and urgent, with the multiple popular OT/IoT cellular routers having outdated software and abundant exploitable vulnerabilities. A few key findings from the Rough Around the Edges report ⬇️ 💻 In the firmware analyzed, our team discovered 20 n-day vulnerabilities affecting the kernel. 🌐Firmware running open-source software from OpenWrt is widespread, making it easier for threat actors to attack. 🔓 Outdated software is all too common, with the average age of components on OT/IoT router firmware being five and a half years, and over four years behind the latest release. With the increase in both managed and unmanaged devices connecting to the Internet, spanning critical infrastructure sectors and beyond, the urgency for robust cybersecurity measures is at an all-time high. To contextualize and mitigate risks effectively, it’s essential to develop a comprehensive and dynamic asset inventory and correlate this information to SBOMs. https://lnkd.in/gm25WDWc #SecurityResearch #VedereLabs #DeviceSecurity #Cybersecurity

In the current connected world, the OT devices are actually more vulnerable than IT devices

As crucial as connected physical security devices are, sometimes things go wrong. Technical issues can result in downtime, prevent devices from recording and/or transmitting, and more. Our blog - 4 Key Dangers of Inadequately-Managed Physical Security Devices, explores these in-depth and how to mitigate them. https://lnkd.in/d68X5xSV #PhysicalSecurity #IoTOps #EnterpriseSecurity #DeviceManagement

https://lnkd.in/gqDSbGQj “Threat actors are now exploiting OT devices to do everything from accessing critical and operational networks, to enabling lateral movement, establishing a foothold in a supply chain, or disrupting the target’s OT operations"

I have mixed feelings on this one. Factory reset and default password have been the recovery path for a lot of small devices, and I worry that this will lead to more shelfware and more single-use devices. https://lnkd.in/gxeiTEMe

We are excited to announce the update of Entry-level cellular routers series ICR-2400/2500. The industrial cellular routers ICR-2400/2500 are designed for wireless communication in mobile networks that utilize traditional cellular technologies with following benefits: - Supporting Category 4 (Cat.4) services on the LTE cellular network. The peak downlink data rate for Category 4 is approx. 150 Mbps. - Equipped with up to four Ethernet ports, and digital I/O connectivity (1x DI, 1x DO). - Optionally, the routers can incl. 1x serial port RS232, 1x RS485, and WiFi 802.11 a/b/g/n with AP, Client, and Multirole modes. Please find more information about: ICR-2431G – with GNSS receiver - https://lnkd.in/e2UvNEaE ICR-2501 – LAN model - https://lnkd.in/eF_UBpaM #4GCellularRouters #WiFi #ReliableConnectivity #Industrialnetworking #Automation #Cybersecurity

Last week, our brilliant Russell Joseph hosted a webinar in collaboration with the Lighting Industry Association (LIA) as part of their Tech Talks @ 2 series. The session was perfect for anyone curious about Bluetooth Mesh or wanted to gain a deeper understanding of the latest Bluetooth NLC Standards. If you missed it I highly recommend watching the recording ...it’s packed with valuable insights! You’ll walk away with a better understanding of how Bluetooth Mesh is shaping the future of lighting control. In the meantime, here are some highlights I noted down for you ✨ Interoperability: The goal of the Bluetooth Mesh standard is full cross vendor interoperability, allowing devices from different manufacturers to communicate seamlessly out of the box. Bluetooth Mesh defines all protocol layers ... from the lowest radio network levels to the top application layer ensuring complete interoperability. As an open standard, Bluetooth Mesh encourages widespread adoption of lighting control technologies, providing customers with the freedom to choose from a variety of products across vendors. 🔒 Security: Bluetooth® Mesh is designed with industrial grade security, providing protection against all known attacks. Security is mandatory across the entire network of devices, including groupings of devices, ensuring comprehensive coverage. Bluetooth Mesh defends against potential threats, such as malicious data transmission (replay attacks), password extraction from discarded devices (trashcan attacks), and more. #LightingIndustry #BluetoothMesh #NLCStandards #LucecoLighting #Interoperability #Security #LightingInnovation #LucecoGroup

We are excited to announce the update of Entry-level cellular routers series ICR-2400/2500. The industrial cellular routers ICR-2400/2500 are designed for wireless communication in mobile networks that utilize traditional cellular technologies with following benefits: - Supporting Category 4 (Cat.4) services on the LTE cellular network. The peak downlink data rate for Category 4 is approx. 150 Mbps. - Equipped with up to four Ethernet ports, and digital I/O connectivity (1x DI, 1x DO). - Optionally, the routers can incl. 1x serial port RS232, 1x RS485, and WiFi 802.11 a/b/g/n with AP, Client, and Multirole modes. Please find more information about: ICR-2431G – with GNSS receiver - https://lnkd.in/e6Kx8h4R ICR-2501 – LAN model - https://lnkd.in/eJGK2Vzp #4GCellularRouters #WiFi #ReliableConnectivity #Industrialnetworking #Automation #Cybersecurity

Full visibility is essential!