IOActive Uncovers Vulnerabilities in United States Emergency Alerting System
Digital Alerting Systems DASDEC application servers found to be vulnerable to remote attack Seattle, WA ― July 8, 2013 ― IOActive, Inc., a leading provider of application security, compliance and smart grid security services, today announced that is has discovered vulnerabilities in the Emergency Alerting System (EAS) which is widely used by TV and radio stations across the United States. IOActive’s principal research scientist, Mike Davis, uncovered the vulnerabilities in the digital alerting systems – DASDEC – application servers. The DASDEC receives and authenticates EAS messages. Once a station receives and…
IOActive’s Eireann Leverett to present on publicly accessible Industrial Control Systems at FIRST Conference
London, UK ― June 14, 2013 ― IOActive, Inc., a leading provider of application security, compliance and smart grid security services, today announced that security consultant Eireann Leverett, will be presenting national and global case studies highlighting the mitigation of publicly accessible industrial control systems at the FIRST Conference in Bangkok next week. In his presentation, Eireann will address the importance of engaging with incident response teams of those companies using ICS systems. He will show his analysis from the past two years whether the problems these organisations are faced with…
IOActive Discovers Backdoor Vulnerabilities in TURCK Industrial Automation Devices
Seattle, WA ― May 23, 2013 ― IOActive, Inc., a leading provider of application security, compliance and smart grid security services, today announced that company security consultant Ruben Santamarta, uncovered hard-coded user accounts that could act as backdoors in two devices from German industrial automation manufacturer, TURCK. The affected devices from TURCK, which could be exploited remotely, are the BL20 and BL67 Programmable Gateways. These devices, primarily used in the US, Europe as well as in Asia, are deployed across many industries that include agriculture and food, automotive and critical manufacturing….
IOActive’s David Balcar to present on breaches and mitigation at BSides San Antonio
Seattle, WA ― May 3, 2013 ― IOActive, Inc., a leading provider of application security, compliance and smart grid security services, today announced that David Balcar, its director of services who is also heading up the company’s growth in Texas and the southeast, will present at BSides San Antonio. In his presentation – You’ve been Breached, Now What? – to be given at this grass roots, DIY, open security conference Balcar will discuss the various published security breaches, ranging from financial services through to mobile, that have taken place over the past year…
Christopher Tarnovsky to present at DESIGN West on Advanced Techniques to Hack Hardware Chips
IOActive’s VP of semiconductor security services to show how to reverse engineer low level chips Seattle, WA ― April 18, 2013. – IOActive, Inc., a leading provider of application security, compliance and smart grid security services, today announced Christopher Tarnovsky, vice president of semiconductor security services at the company, will present at DESIGN West’s Black Hat Embedded Security Summit on the topic of Low level chip reverse engineering. “Product designers and manufacturers are moving more of their products secrets down to the silicon level in an attempt to thwart hackers. They understand…