Internet of Things – just because we can, doesn’t mean we should

 

At the dentist office today was the most ridiculous thing to join the Internet of Things – a Bluetooth-enabled POWER TOOTHBRUSH.  What on earth is the value of connecting your toothbrush to the internet? For that matter, why enable your TOASTER to be online?  Your washer, your dryer?  Do you really need your fridge to tell you when you need eggs, milk or beer?

Just because we CAN put connectivity into all kinds of devices, SHOULD we?  If there were no cost to having all of these devices happily chatting online and sharing their IP addresses, then why not? But there is a cost to this incredible interconnectedness – nearly all of these devices were built without security in mind.  Because of this, they are ripe little plums to be enslaved by bot herders who will gather them to participate in massive denial of service attacks.  Approximately a year ago, the world first saw the power and peril of the IoT when a herd of enslaved CCTV’s brought down some of the internet’s leading websites through attacking managed DNS provider Dyn, as well as security researcher Bryan Krebs and French ISP OVH (See “The Incredibly Insecure Internet of Things“).  Those attacks underscored the danger of linking everything and began the pointing of fingers to resolve the problem.

The problem has not yet been resolved, although IoT security companies are sprouting up overnight. Device manufacturers may be adding some forms of security in the future, but are all of them?  What about the devices that are already deployed?  Relying on end users to change device passwords is a ridiculous strategy.  IoT devices can be prevented from joining bot herds through the DNS, which right now is the only easy strategy to address the secure-less devices.

Perhaps we should start thinking about the true need when enabling a device – devise a litmus test of sorts to determine whether connection really brings value beyond the belief that users need to have everything connected.

Toothbrushes and toasters would fail such a test – there is no good reason for either to be connected.  Washers, dryers and refrigerators also would fail – the only reason to enable the first two is because advertisers want to serve ads; and refusing to note what is in your fridge is actually doing your brain a disservice.   Cameras, medical devices, security systems, routers – yes.  Thermostats? Not so much. Garage doors?  Hmm, the chance of opening it yourself remotely just became a real issue – one you wouldn’t face (outside of within a block) without Internet of Things enablement.

In lieu of any official litmus test, it is up to the end user to put the brakes on buying connected devices, because many of them actually make you less secure.  After all, Amazon Echo and Google Home don’t stop listening to you just because you didn’t say their name, and did you know that hackers can access the webcam on your computer as long as the computer is turned on?

Tier-1 Latin American Telco Selects Secure64 to Replace BIND Servers

For Immediate Release:

Tier-1 Latin American Telco Selects Secure64 to Replace BIND Servers

Greenwood Village, CO – January 17, 2017 – Secure64, the leading provider of Genuinely Secure DNS servers today announced that the leading telco provider in Costa Rica has selected Secure64 to replace their legacy BIND environment and deploy Secure64’s DNS Guard security services to protect their network and end users from malware.

“Facing increased competition, this leading carrier engaged Secure64 to enhance their network security and improve overall quality of service,” said Mark Beckett, VP of Product and Marketing, Secure64. “Their existing DNS infrastructure, which was based on BIND legacy servers, had suffered service outages due to attacks that negatively impacted the customer experience. By selecting Secure64 the carrier was able to improve network availability and differentiate their service by deploying DNS-based security services that protect their subscribers from malware.”

Secure64 DNS servers are not based on BIND and, as a result, are not vulnerable to BIND vulnerabilities.

About Secure64 Software Corporation

Secure64 brings trust to the internet through its suite of purpose-built, secure, DNS-based network security products. The company was built on a foundation of security and has forged solutions that are self-protecting and immune to malware.  Secure64 secures the DNS infrastructures of leading service providers, government agencies and enterprises globally.

Secure64 is a privately held company founded by technology and financial veterans and boasts deep technical and global experience in its leadership and staff.  It is the only DNS solution provider that has authored a secure micro OS, automated the deployment of DNSSEC and built self-protecting DNS servers. For more information, visit www.secure64.com

Theresa DeGroote
Secure64 Software Corporation
303-242-5900
Theresa.DeGroote@secure64.com
www.secure64.com

Avoid the DNS outage that could cost you the C-suite

By Steve Goodbarn

Co-founder and Chairman, Secure64

Summary of article published in The Business Journals. To read the article in its entirety, click here: 

A DNS outage will take your business offline – and potentially your job with it.  It is time to make DNS security a critical focus point for companies.

“Long taken for granted as a utility, DNS is the critical, pervasive system that touches all internet-connected devices and services, yet represents the Achilles heel in internet security today.”

In his article, Steve examines the important of the DNS and its vulnerabilities.  Beginning with a discussion about the need for capacity and both genetic and geographic diversity, he then moves to attacks on the DNS –  redirection, cache poisoning and more prevalent – distributed denial of service  (DDoS) attacks.  He then provides a checklist that companies should employ to ensure the continuity of their online business.

The threat of attack, while scary, is a real possibility—particularly for companies that have not yet taken the proper precautions to defend against attacks on the DNS. A secure, self-protecting DNS and implementation of DNS Security Extensions are critical checks for all companies conducting business online. To not secure your DNS is more than just putting business on the line: a breach in security could cost you your career.

Press Release – Thad Dupper, CEO

[vc_row][vc_column width=”2/3″][vc_column_text]

Industry Veteran Thad Dupper Appointed CEO of Secure64

Greenwood Village, CO – October 4, 2017 – Secure64, the leading provider of Genuinely Secure DNS servers and DNS-based security solutions, today announced that Thad Dupper has been appointed Chief Executive Officer and will join the company’s Board of Directors. Joe Gersch, the former CEO, has retired from the company.

Well-known within the technology industry, Mr. Dupper is an experienced CEO, having led both start-ups and public companies.  Most recently, Mr. Dupper was Chairman and CEO of Evolving Systems (NASDAQ:EVOL).  Prior to that, Mr. Dupper held leadership positions at Terabeam; Expand Beyond, a Menlo Ventures company; and Teradata, where he was an early member of the management team.

“We are very pleased to welcome Thad to our team as Secure64 continues to execute our aggressive growth plan,” said Steve Goodbarn, Co-founder and Chairman of Secure64. “Thad’s proven track record with technology start-ups and growing companies is a perfect fit for Secure64 as we accelerate and execute our growth strategy.  I also want to thank Joe Gersch for all of his contributions to the company’s success. We wish him well in his future endeavors,” added Goodbarn.

“I am very pleased to be joining the Secure64 team, especially at this time when cyber security has become a critical issue that every company Board is having to address,” said Dupper. “Secure64 has been a leader in enabling network operators, enterprises and governments to protect their DNS infrastructures from DDoS and other network attacks and intrusions.”

About Secure64

Secure64 brings trust to the internet through its suite of purpose-built, secure, DNS-based network security products. The company was built on a foundation of security and has forged solutions that are self-protecting and immune to malware.  Secure64 secures the DNS infrastructures of leading service providers, government agencies and enterprises globally.

Secure64 is a privately held company founded by technology and financial veterans and boasts deep technical and global experience in its leadership and staff.  It is the only DNS solution provider that has authored a secure micro OS, automated the deployment of DNSSEC and built self-protecting DNS servers. For more information, visit www.secure64.com

For Immediate Release:
Theresa DeGroote
Secure64 Software Corporation
303-242-5900
Theresa.DeGroote@secure64.com
www.secure64.com

[/vc_column_text][/vc_column][vc_column width=”1/3″][/vc_column][/vc_row]