New recommendations were released by the NSA and CISA to help cloud service providers, mobile network operators and core network equipment vendors ensure that 5G networks are secure against threat actors planning attacks that would deny access or compromise data.
A CISA official told legislators that in the fast-moving aftermath of an emergency, a vast disparate network of public and private actors must quickly share information, including documents, images or texts. That process can be corrupted if a threat actor got organizations to share files laced with malware.
Amichai Shulman, chief technology officer and co-founder of AirEye, warned of "more and more severe vulnerabilities in the implementation and design" of wireless network communication.
The financial burden of compliance with piling security standards could force some device manufacturers to walk away from highly regulated buyers like the Pentagon.
A while back, Joshua Wright wrote a fantastic paper called “Vista Wireless Power Tools for the Penetration Tester”. At the end of paragraph 2.5, “Analyzing Wireless Profiles”, Josh writes, “The PSK itself and other metadata is stored in the keyMaterial element. At this time, it is not known how to decrypt the PSK, however, since […]
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.