Episode 386: We question Nova Labs’ 5G deal

Nova Labs, the company behind the decentralized Helium IoT network, has acquired FreedomFi, a company trying to build a decentralized 5G network. Kevin and I share our doubts about the value of a decentralized 5G network and question how this might work before moving on to discuss an array of security news. We start with the latest report on OT security from cybersecurity firm Claroty before sharing research on air-gapped networks bypasses with lights and sound. We end with a story about Amazon patching Ring apps on Android devices and my hope of a new tool that could make it easy to monitor devices that might invade your privacy. We also talk about a new wearable that tracks mood, Kevin’s frustration with devices, Nordic Semiconductor’s foray into Wi-Fi chips, Chamberlain’s reversal of HomeKit support, and InfluxDB announcing native connectors for MQTT. We end the show by answering a listener question about NovaLabs and its 5G plans.

The Happy Ring will track your moods and is only available via a subscription. Image courtesy of Happy Health.

Our guest this week is Josh Corman, who returns to the show to discuss his work at the Cybersecurity and Infrastructure Security Agency (he just joined Claroty as vice president of cyber safety strategy). Infrastructure in the U.S. and in many other countries has become increasingly attractive to hackers seeking ransoms or more serious disruption. Whether it’s someone hoping for profits or a nation-state, Corman points out some of the easiest and most effective steps an entity can take, even if that organization doesn’t have a formal cybersecurity program — or the budget for one.  He starts with the Bad Practices list from CISA that states organizations should avoid hard-coded passwords, establish multi-factor authentication and to avoid using software that has reached its end of life. We also discuss an easy effort to get your Stuff off Search, a program that helps any IT person suss out open ports on popular search sites such as Shodan, Censys and Thingful. It’s so easy I can do it.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Josh Corman, Founder, I am The Cavalry and VP Cyber Safety Strategy at Claroty
Sponsors: Silicon Labs and Impinj

  • We have big concerns about a decentralized 5G network’s viability
  • More vulnerabilities are showing up in firmware
  • Here’s a mood ring for the 21st century
  • We need to get more companies to do the bare minimum for cybersecurity
  • How to get your stuff off search and start securing your network

Episode 357: Too many companies are paying ransomware

This week we kick off the show with an explainer on Sigfox’s receivership before delving into grim news from Claroty, a cybersecurity firm.  Claroty surveyed 1,100 IT and OT (operational technology) pros and discovered that three out of five of them worked at companies that paid up after a ransomware attack. I can’t believe it, but the research offers compelling reasons why. We then move over to some Matter news, starting with an update from Assa Abloy on backward compatibility for its Yale locks, and concluding with an update from Nanoleaf, which is delaying some of its products thanks to Matter being delayed. We then cover Walmart teaming up with Angi to install some smart home products for consumers as part of the rush to invest in smart devices that we discussed last week with Angi’s CEO. In quick news, we talk about a new IoT satellite service, an acquisition by connected health company Withings, and Peloton’s new $90 smart heart rate monitor. We conclude the show with a good idea from one of our listeners who set up a sort of call system using Wyze outlets and smart bulbs.

Withings purchased a subscription workout app to add to its wellness hardware. Image courtesy of Withings.

Our guest this week is Simon van der Jagt, CEO of Nowi. Nowi makes an energy harvesting chip that is easier to use in a variety of sensors. We talk about why, before moving to a discussion of plug and forget devices, and what those will entail. The idea is that companies can build energy-harvesting sensors that could last for the life of a road or container or other product, and thus we can forget about them. We also talk about trends in designing chips for the IoT such as sales challenges and the growing demand for highly specific chips that can consume the least amount of power while getting the work done. Enjoy the show.

Hosts: Stacey Higginbotham and Kevin Tofel
Guest: Simon van der Jagt, CEO of Nowi
SponsorsRightpoint and Hologram

  • What led to Sigfox’s “bankruptcy”
  • You’ll never believe the size of these ransoms
  • Is Matter causing product delays?
  • What kind of chips does the IoT need?
  • Let’s design plug and forget devices