Resultados 1 a 4 de 4
  1. #1
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,190

    [EN] U.S. sues D-Link, alleges lax security in routers, cameras

    Diane Bartz and Jim Finkle
    Jan 6, 2017

    The U.S. Federal Trade Commission filed a lawsuit against D-Link Corp on Thursday, accusing the Taiwan-based manufacturer of failing to take reasonable steps to protect its routers and internet-linked security cameras from hackers.

    The FTC brought the charges as part of a broader effort to improve security of internet-connected devices, including routers, webcams, digital video recorders and other widely used consumer electronics devices.

    The company said in a statement it would "vigorously defend itself against the unwarranted and baseless charges".

    The FTC "fails to allege, as it must, that actual consumers suffered or are likely to suffer actual substantial injuries," it added.

    Concerns about security of internet-connected devices, which are sometimes referred to collectively as the internet of things, or IoT, have surged since last year when hackers used armies of compromised routers, webcams and other electronic devices to launch a series of increasingly powerful attacks that severed access to some of the world's biggest websites.

    Security experts blamed those attacks on lax security in large numbers of IoT devices from dozens of manufacturers. They have called on the industry to better secure their equipment, removing easy-to-exploit vulnerabilities such as the use of default passwords that give hackers the keys to remotely access machines over the web.

    Allison Nixon, director of security research with cyber intelligence firm Flashpoint, said the FTC's action could encourage IoT manufacturers to beef up security.

    "I think vendors are going to take it seriously," she said. "The IoT world needs to shape up quickly because this is a big problem."

    The FTC's complaint alleged that D-Link neglected to protect the devices from "widely known and reasonably foreseeable risks of unauthorized access," even as it highlighted security features in communications with consumers.

    The FTC asked the U.S. District Court for the Northern District of California to order D-Link to improve its security practices and to pay the agency's legal costs.

    The agency filed the case after issuing guidelines on securing IoT devices in 2015.

    FTC commissioners voted 2-1 to approve the filing of the lawsuit. The Democratic chairwoman Edith Ramirez and commissioner Terrell McSweeny voted yes, but the lone Republican commissioner, Maureen Ohlhausen, opposed the filing of the lawsuit.

    (Reporting by Diane Bartz; Additional reporting by J.R. Wu in Taipei; Editing by Bernard Orr and Stephen Coates)

    http://www.reuters.com/article/uk-d-...-idUSKBN14P2ME

  2. #2
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,190
    BTW ...

    Lydia Beyoud ‏@ElleBeyoud Jan 4

    BREAKING: President Obama has just renominated Democrat @JRosenworcel to another term at the @FCC @dalykyle and I are reporting



    Obama Again Seeks to Place Democrat on FCC Panel

    President renominates Federal Communications Commissioner Jessica Rosenworcel for second term

    John D. McKinnon
    Jan. 4, 2017 7:00 p.m. ET

    President Barack Obama renominated Federal Communications Commissioner Jessica Rosenworcel on Wednesday, in a last-ditch effort by Democrats to put her back on the panel.

    Mr. Obama had previously renominated Ms. Rosenworcel, but the Senate didn’t confirm her to a second term on the five-member panel, in a complex partisan dispute last year. Ms. Rosenworcel’s tenure on the panel officially ended earlier this week, with the expiration of the last Congress.

    Wednesday’s nomination was submitted to the new Congress that convened this week, but she faces the same hurdles this year.

    Unless the Senate confirms her before President-elect Donald Trump’s inauguration on Jan. 20, Mr. Trump would be free to withdraw her nomination.

    And, at least for now, the GOP-run Senate has little incentive to add another Democrat to the panel, which Republicans are expected to control by 2-1 following the expected resignation of Democratic Chairman Tom Wheeler. There is little indication that the other Democrat, Mignon Clyburn, will leave before her term expires later this year. Her office didn’t immediately respond to a question.

    Still, the nomination underscores Ms. Rosenworcel’s continued support among Democrats, and might help sway the incoming president to support her as the panel’s second Democrat when Mr. Trump nominates a third Republican to take Mr. Wheeler’s place. Some industry observers expect the new president to designate current GOP commissioner Ajit Pai, who is the senior Republican on the panel, as the acting chairman sometime this month.

    A lawyer and former Senate aide, Ms. Rosenworcel has been a high-profile advocate for expanding broadband access for lower-income people and hard-to-serve areas. She has also pushed to accelerate deployment of next-generation wireless service, known as 5G.

    http://www.wsj.com/articles/obama-ag...nel-1483574409
    Última edição por 5ms; 06-01-2017 às 07:26.

  3. #3
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,190

    D-Link Responds to FTC Charges

    FOUNTAIN VALLEY, Calif., Jan. 5, 2017 /PRNewswire/ -- D-Link Systems, Inc. today announced it will vigorously defend itself against the unwarranted and baseless charges made by the Federal Trade Commission (FTC). In a contested 2-1 decision, the FTC decided to file a complaint in federal district court alleging that D-Link Systems has "failed to take reasonable steps to secure the software for their routers and IP cameras" against hacking.

    D-Link is the global leader in connectivity for home, small business, mid-sized enterprise environments, and service providers. An award-winning designer, developer, and manufacturer, D-Link implements and supports unified network solutions that integrate capabilities in switching, wireless, broadband, storage, IP Surveillance, and cloud-based network management.

    D-Link Systems rejects the FTC's allegations and firmly believes that its processes and procedures related to security were more than reasonable. D-Link Systems maintains a robust range of procedures to address potential security issues, which exist in all Internet of Things (IoT) devices.

    The FTC complaint does not allege any breach of a D-Link Systems device. Instead, the FTC speculates that consumers were placed "at risk" to hacking, but fails to allege, as it must, that actual consumers suffered or are likely to suffer actual substantial injuries.

    "The FTC complaint alleges certain security hacking concerns for consumer routers and IP cameras, and we firmly believe that charges alleged in the complaint against D-Link Systems are unwarranted," said William Brown, chief information security officer, D-Link Systems, Inc. "We will vigorously defend the security and integrity of our routers and IP cameras and are fully prepared to contest the complaint. Furthermore, we are continually working to address the overall security features of D-Link Systems' products for their intended applications and to regularly inform consumers of the appropriate steps to take to secure devices."

    FTC Complaint Q&As
    As of 01/05/2016

    SUMMARY:

    D-Link Systems, Inc. is aware of the complaint filed by the Federal Trade Commission on January 5, 2017. D-Link Systems denies the unwarranted allegations outlined in the FTC complaint and will vigorously defend the action.


    • What is the charge/filing by the FTC against D-Link Systems?


    In a contested 2-1 decision, the FTC decided to file a complaint in federal district court alleging that D-Link Systems has “failed to take reasonable steps to secure the software for their routers and IP cameras” against hacking


    • What D-Link Systems products are impacted?


    The FTC has made vague and unsubstantiated allegations relating to routers and IP cameras. Notably, the complaint does not allege any breach of any product sold by D-Link Systems in the US.


    • What is D-Link Systems’ comment on the complaint?


    D-Link Systems, Inc. will vigorously defend itself against the unwarranted and baseless charges made by the Federal Trade Commission (FTC).


    • Why is D-Link Systems contesting the charge/charges?


    D-Link Systems maintains a robust range of procedures to address potential security issues, which exist in all Internet of Things (IOT) devices. Notably, the complaint does not allege any breach of a D-Link Systems device. Instead, the FTC speculates that consumers were placed “at risk” to be hacked, but fails to allege, as it must, that actual consumers suffered or are likely to suffer actual substantial injuries.


    • Is there any security concern for current products?


    The FTC does not allege any breach of any product sold by D-Link Systems.


    • Any measures to address security issues and flaws for Internet of Things?


    D-Link Systems maintains a robust range of procedures to address potential security issues, which exist in all Internet of Things (IOT) devices.

    http://supportannouncement.us.dlink....?name=SAP10069

  4. #4
    WHT-BR Top Member
    Data de Ingresso
    Dec 2010
    Posts
    17,190

    Can courts prosecute insecure software without a breach?

    D-Link vows to fight "dangerous" US govt lawsuit

    Paris Cowan
    Jan 11 2017



    Home and small business networking company D-Link has vowed to fight the United States Federal Trade Commission over what it describes an “unwarranted and baseless” lawsuit brought against it over alleged security vulnerabilities.

    The US consumer watchdog voted to take D-Link to court earlier this month, alleging the company “failed to take reasonable steps to secure the software for their routers and IP cameras”.

    FTC is urging a US District Court in California to compel the company to tighten their security practices and cover the regulator's legal costs in bringing the case.

    Today D-Link announced it had enlisted non-for-profit defenders from the Cause of Action Institute to fight the charges.

    D-Link says the court action by FTC threatens to set a “dangerous precedent” that could allow the government to sue businesses in the absence of “a single instance of actual or likely consumer harm”.

    The consumer electronic's chief information security officer William Brown pointed out that there has been “no actual data breach” alleged by the FTC in its suit.

    Cause of Action Institute’s Patrick Massari said “if the FTC can bring a lawsuit on the mere potential of a data security breach, nearly every company will be subject to unconstrained and unexplored data security liability.

    “Such limitless liability coupled with FTC's history of unrelentingly litigious oversight will no doubt have a chilling effect on innovation in the Internet of Things”.

    The commission has a mixed record of legal action against companies it says haven’t done enough to protect their customers against hacking or privacy breaches.

    Its case against diagnostics laboratory LabMD was knocked back in 2015 after it failed to convince a court the firm had exposed the personal information of approximately 10,000 consumers.

    A judge ruled the commission had proved the “possibility of harm, but not any ‘probability’ or likelihood of harm”.

    However it did secure a $2.2 million settlement with Ashley Madison after a hack on the infidelity website leaked the details of 36 million account holders in July 2015.


    http://www.itnews.com.au/news/d-link...lawsuit-447120

Permissões de Postagem

  • Você não pode iniciar novos tópicos
  • Você não pode enviar respostas
  • Você não pode enviar anexos
  • Você não pode editar suas mensagens
  •