Partners
HOME    BLOGS    BLOGGERS    MESSAGES    VIDEO    AUDIO    REPORTS    RESEARCH    WEBINARS

Target Breach: A Warning for 'Dumb' Smart Buildings

Newest First    Oldest First    Threaded View
Page 1 / 2   >   >>
Simon Hersom
Simon Hersom  
2/17/2014 4:36:34 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
At some point there has to be a reaction that dissuades people from attaching everything to the internet.  If it's connected there is a way of evading security whether by technical failure or human lassitude.  So you have to ask just how beneficial it is for the connections to exist at all.

People aren't good at security.  A compnay I work with has just changed the access codes to its computer room after nine years, and despite access control on the doors allows people to tailgate.  

As I recall the Stuxnet virus is thought to have been introduced via a memory stick to a network that had no external connections.  It seems that few can resist the offer of a "free" memory stick.

Davedgreat2000
Davedgreat2000  
2/13/2014 9:34:42 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
the same can be said of our Home Personal Networks, We have Wifi, its secured with the protocols installed (WEP). But our laptops, desktops and cell phones need to be secured and protected with something so we all go out and purchase anti-virus protection but once the yearly service is done with, we dont purchase the upgrads. or we spend the money to extend for another year of service. Knowing the right software to buy is another problem, not all anti-viruses work the same. some will slow your system down or cause a crash or it beomes worse than the viruses its made to protect (we had this happen to us).

At one point i was running three anti-virus softwares because one wasnt catching all the viruses.

But we protect ourselves from harrm in various ways. Its a must.

Davedgreat2000
Davedgreat2000  
2/13/2014 9:29:09 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
I agree that some security is better than none, but it has to be the right security for the situation/company at hand. it also has to be upgraded and monitored on a daily basis

Lesthertod
Lesthertod  
2/13/2014 2:46:50 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
That's exactly the bottom line stotheco, any company must invest in security, no matter the size, aim, service, product or anything they do.

Most of the time, security breaches on smaller companies happen because someone inside got infected through malware or such "dumb" things. So it's actually quite easy to compromise the network if nobody is looking after it.

stotheco
stotheco  
2/13/2014 1:32:33 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
Companies don't have to be "big" in order to attract the attention of hackers. In fact, lots have their sights set on smaller ones because these are the ones that have poorer security systems, most likely. Whether big or small, invest in security.

stotheco
stotheco  
2/13/2014 1:31:18 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
This is something that people really have to keep in mind. While not all security is 100% effective, having a good enough system in place will benefit the firm in the long run. Whether it's reduced or thwarted attacks, a good security system is a must.

Miki Calero
Miki Calero  
2/12/2014 10:35:25 PM
User Rank Blogger
Smart building cyber security and resilience
A colleague in the UK--fortunately unaffected by the floods--pointed me to the IET Standards Technical Briefing "Resilience and Cyber Security of Technology in the Built Environment," with direct applicability to smart buildings.

Lesthertod
Lesthertod  
2/12/2014 4:36:18 PM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
How much are companies and even the government willing to spend on Security? How are are the people willing to go?

That's the issue! Most of the companies think that since they're not that "big" or because they're "way to big" to become a target of cyberattacks in their budget it's not a priority to secure networks... however, they want everything connected, automated, simplified and fool-proof.

Though, as you mention Dave, there is not a 100% effective security system, but a good one is way better than "we were using a pirated version of the antivirus on our network, because the niece of the boss told him it was the best one; but since it's quite expensive..." and definitely better than nothing.

Davedgreat2000
Davedgreat2000  
2/12/2014 10:58:54 AM
User Rank Urban Legend
Re: Ugh, same mistakes repeated again and again
One of the things that I have learned working in Engineering is that NO SECURITY IS 100% EFFECTIVE, no matter what we do, we cannot secure a system 100% of the time. There will always be ways to exploit a system, be it the technology itself, firewalls, passwords, software or the Human factor. But we must secure our systems and continue to revise our security on a daily basis if needed.

I know companies who are running several Anti-spyware, Anti-virus and Anti-malware programs pretty much at the same time, because one programe doesnt do the trick.

How much are companies and even the government willing to spend on Security? How are are the people willing to go?

Mary Jander
Mary Jander  
2/12/2014 10:57:42 AM
User Rank Staff
An update from Michael Chipley
Just got the following message from PMC Group president Michael Chipley, with some news:

Assume you saw the notice NIST will release the Cybersecurity Framework tomorrow. As part of the EO, DoD-GSA issued an acquisition report to change the procurement process. NIST is planning on releasing the next SP 800-82 Rev 2 Industrial Control Systems Security Guide for public review in next couple of months (which applies to all control systems), this is what we have been working on the past year and forms the basis of creating Ops Centers for Continuous Monitoring, Test and Development environment, Pen Testing of critical control systems, etc.

 The Interagency Security Committee also developed a Converged Systems WP, which was the focus of the Workshop we had in DC Jan 28. You can download the presentations on the WBDG website, just put them up.

 

Page 1 / 2   >   >>
research
Smart City Money Makers
companies and solutions that are most prominent, and destined to be most profitable, in the smart city revolution.
How to Make Your City Smarter
Cities all over the world need to become smarter and more sustainable. But where to start? Download this guide to learn the first, proven steps toward making your city smarter.
all research
quick poll
Join the discussion
All polls
twitter feed
Future Cities Twitter Feed
follow us on facebook
Site Moderators
Future Cities is looking for engaged readers to moderate the message boards on this site. Engage in high-IQ conversations; earn kudos and perks. Interested? E-mail:
moderators@ubmfuturecities.com
directory
Designed to provide the people with access to green building products all year round
connect to us
Terms of Service
Privacy Policy
Copyright © 2014 UBM,
All rights reserved.