Tool to validate if SPF and DMARC records have been "published" in a domain's DNS zone file. The tool will query the DNS of the respective domains and present the records found. Up to 500 domains may be entered.
Was your Nest password stolen? Apparently the smart home company is notifying users that their Nest password may be vulnerable after it detected that a password breach from another site was affecting users of its site. Since Nest is in the home security business now, this makes tremendous sense. I don’t want someone hacking my cameras, my alarm system, or my Nest door lock.
Smarthome vendor did the right thing says the Internet Society. Nest, the Google-owned manufacturer of home automation devices best known for its smart thermostat, has warned a customer of a password breach, urging him to change it and deploy two-factor authentication (2FA).
Because you have to use your Google credentials to set up and use Google Home and many Google Assistant functions, a significant amount of your personal information falls under the umbrella of just one company. "If you trust Google to take good care of your data in general, having it in one place versus all over the place is good," said Jeff Wilbur, director of the nonprofit Online Trust Alliance.
IoT device manufacturers face an array of challenges when thinking about securing their devices. On the heels of the RSA Conference, Threatpost’s Lindsey O’Donnell talks to Jeff Wilbur, director of the Online Trust Alliance, about the challenges that manufacturers face when securing IoT devices.
A colleague just received an “Urgent Security Alert - Action Requested” email from Nest (see the image below). At first glance it looked like either a phishing attempt or one of the way-too-often breach notifications we all receive these days.
I used to love the old Space Invaders arcade game - waves of enemy attackers came in faster and faster while you tried to defend your base. With experience you could learn their tactics and get pretty adept at stopping them. For today’s enterprise IT staff, consumer-grade IoT devices must certainly feel like those space invaders of old.
The past six months we have witnessed an un-paralleled level of questionable business practices resulting from data breaches. As trusted brands, Uber as well as Equifax and others, who have been entrusted with significant amounts of personal data have failed the American public. The breach missteps and follies only continue. Each time most within the security and privacy communities have rolled our eyes in disbelieve.