Stanford Starts the 'Secure Internet of Things Project' Slashdotby Soulskill on security at January 1, 1970, 1:00 am (cached at June 30, 2015, 11:34 pm)

An anonymous reader writes: The internet-of-things is here to stay. Lots of people now have smart lights, smart thermostats, smart appliances, smart fire detectors, and other internet-connect gadgets installed in their houses. The security of those devices has been an obvious and predictable problem since day one. Manufacturers can't be bothered to provide updates to $500 smartphones more than a couple years after they're released; how long do you think they'll be worried about security updates for a $50 thermostat? Security researchers have been vocal about this, and they've found lots of vulnerabilities and exploits before hackers have had a chance to. But the manufacturers have responded in the wrong way. Instead of developing a more robust approach to device security, they've simply thrown encryption at everything. This makes it temporarily harder for malicious hackers to have their way with the devices, but also shuts out consumers and white-hat researchers from knowing what the devices are doing. Stanford, Berkeley, and the University of Michigan have now started the Secure Internet of Things Project, which aims to promote security and transparency for IoT devices. They hope to unite regulators, researchers, and manufacturers to ensure nascent internet-connected tech is developed in a way that respects customer privacy and choice.

Read more of this story at Slashdot.

VIDEO: 'I feel like I can fly forever' BBC News | Science/Nature | UK Edition(cached at June 30, 2015, 11:30 pm)

A solar-powered plane that is attempting to cross the Pacific Ocean is encountering its first weather front.
Greece default nears as Athens makes last bid for deal AL JAZEERA ENGLISH (AJE)(cached at June 30, 2015, 11:30 pm)

Greece requests new two-year rescue deal from eurozone in race to the wire before current bailout expires at 22:00 GMT.
June IT Management Monthly News Diget (IT Toolbox Blogs) SANS ISC SecNewsFeed(cached at June 30, 2015, 11:30 pm)

Securing business critical infrastructure via trusted technology procurement (IT Too SANS ISC SecNewsFeed(cached at June 30, 2015, 11:30 pm)

Al-Qaeda suspects among 1,200 escapees from Yemen jail AL JAZEERA ENGLISH (AJE)(cached at June 30, 2015, 11:00 pm)

Security official says troops loyal to ex-president Saleh allowed prisoners to escape amid clashes in prison in Taiz.
Securing Single Points of Compromise (SPoC) (SANS Reading Room) SANS ISC SecNewsFeed(cached at June 30, 2015, 11:00 pm)

Cory Doctorow Talks About Fighting the DMCA (2 Videos) Slashdotby Roblimo on drm at January 1, 1970, 1:00 am (cached at June 30, 2015, 10:33 pm)

Wikipedia says, 'Cory Efram Doctorow (/kri dktro/; born July 17, 1971) is a Canadian-British blogger, journalist, and science fiction author who serves as co-editor of the blog Boing Boing. He is an activist in favour of liberalising copyright laws and a proponent of the Creative Commons organization, using some of their licenses for his books. Some common themes of his work include digital rights management, file sharing, and post-scarcity economics.' Timothy Lord sat down with Cory at the O'Reilly Solid Conference and asked him about the DMCA and how the fight against it is going. Due to management-imposed restraints on video lengths, we broke the ~10 minute interview into two parts, both attached to this paragraph. The transcript covers both videos, so it's your choice: view, read or listen to as much of this interview as you like.

Read more of this story at Slashdot.

What you should know before shopping for DAM software (IT Toolbox Blogs) SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

Federal Reserve's Powell concerned about security of chip and signature (SC Magazine SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

Tactical Data Diodes in Industrial Automation and Control Systems (SANS Reading Room SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

OPM System Taken Offline (June 29, 2015) (SANS Newsbites) SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

App Secretly Mined Cryptocurrencies (June 29, 2015) (SANS Newsbites) SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

OPM shuts down background investigation system, faces lawsuit (SC Magazine) SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)

Encryption is Often Implemented Incorrectly (June 26, 2015) (SANS Newsbites) SANS ISC SecNewsFeed(cached at June 30, 2015, 10:30 pm)