Tag Archive for: Tracker

Nokia Mobile updates (October 13) its Security & OS update tracker with details about all devices


The official Nokia Mobile Security + OS update tracker page for Nokia smartphones has been updated on October 13, 2022. The page update brings details about the availability of the maintenance update or Security or firmware (MR) update for Nokia smartphones.

As per the latest updated information provided on the page, the September Security update 2022 is now available for all newer and older G-series and X-series smartphones. Even older smartphones like Nokia 1.4, Nokia 2.4, and Nokia 3.4, Nokia 5.4, Nokia 8.3 5G have received September Security update.

Only Nokia 6.2 and Nokia 7.2 are on August security update. Tablet Nokia T20 is also on August security update. Nokia T10 has received September security update already.

You can click here for our detailed coverage of all software update news related to Nokia smartphones. Click here to track the July security update releases to Nokia smartphones as they happen.

Remaining Nokia smartphones are however on older security patches with many still featuring the March/February/January 2022 Security updates. Click on the link provided below to check the official update tracker page. Other smartphones are at older patch levels with many of them on February/March 2021 patch level.

Nokia Smartphone Security Maintenance Release Summary Page link

You may be already aware that the Nokia Smartphone Security Maintenance Release Summary page lists Build number and details like whether it is just a security patch or firmware update + security patch for a particular device. But now, Nokia Mobile has enhanced the details provided for each Nokia smartphone on the page. It has added new columns for “Security Patch Cadence” and “No guaranteed Security Patch updates after”.

The cadence tells us whether the smartphone is getting monthly or quarterly security updates. No guaranteed security patch update column mentions the time when smartphone’s 3-year promised security update period ends.

In case the security update is not yet available for your Nokia smartphone, you should check the build number of your smartphone and confirm it with the information provided on the page. If the build number for a particular device is mentioned in the list then only…

Source…

GPS Tracker Made in China Conduit for Vehicle Hacking


6 Vulnerabilities Detected With No Available Patch

GPS Tracker Made in China Conduit for Vehicle Hacking

Severe vulnerabilities in a popular GPS tracking device made in China could allow hackers to remotely surveil vehicles’ locations and shut down their engines, say security researchers in a warning echoed by the U.S. government.

See Also: OnDemand | Zero Tolerance: Controlling The Landscape Where You’ll Meet Your Adversaries

Cybersecurity firm BitSight says it uncovered six vulnerabilities in a hard-wired GPS tracker made by MiCODUS. Boston-based BitSight estimates there are 1.5 million active tracking devices made by the Shenzen-based manufacturer deployed across the globe that are used by 420,000 different customers in more than 160 countries.

Organizations identified by BitSight as using trackers include a Fortune 50 energy company, a national military in South America, a nuclear power plant operator and a state on the east coast of the United States.

“If China can remotely control vehicles in the United States, we have a problem,” said Richard Clarke, a former presidential adviser on cybersecurity.

The firm estimates Russia is the country with the greatest number of vulnerable devices and in the top three of countries with the most users.

The vulnerabilities include a hard-wired master password and vulnerability to SMS-based commands that can be executed without authentication. There are no patches, leading the U.S. Cybersecurity and Infrastructure Security Agency to advise that the trackers be isolated from internet connectivity. The agency is not aware of any active exploitation of the vulnerabilities.

MiCODUS is a maker of automotive tracking devices designed for vehicle fleet management and theft protection for consumers and organizations. It did not immediately respond to a request for comment.

The company’s MV720 model – the subject of the BitSight and CISA advisory – supports all vehicles and has a function to cut off fuel supply, according to its

Source…

Engineering seminar: Cyber Storm Tracker — Using Machine Learning for Cyber Log Data


Dr. Glenn A. Fink, a senior cyber sercurity researcher with Pacific Northwest National Laboratory (PNNL), will give the talk.

Cyber logs are not human language, but of all the common data types used in machine learning (ML), natural language is the closest. But cyber log data is very different from natural lanuage. Log lines contains lots of random-looking garbage. IP addresses and other things frequently change definition. Punctuationh is all over the place. Domain names look like Windows Active Directory names, which look like many other cyber “nouns.” And the syntax and semantics of phrases and terms changes from sensor to sensor. This makes cyber data challenging to ingest into ML models. 

Dr. Fink will talk about the work done at PNNL to ingest cyber logs into natural language processing tools using embeddings. He’ll also show how embeddings can be used as coordinates to show how IP addresses change behavior and relate over time. At the end, seminar attendees will understand why there are still not many true ML methods out there for cyber, and what the major challenges are ahead. 

Dr. Find has worked in computer security, deep learning, visualization, bio-inspired design and human-centric computing at PNNL since 2006. He is the lead inventor of several technologies, including PNNL’s Digital Ants technology, which Scientific American cited as one of 10 “world-changing ideas” in 2010. Digital Ants recently earned an award for Excellence in Technology Transfer from the Federal Laboratory Consortium and was listed as a finalist for an R&D 100 award. His work includes research in bio-inspired, decentralized cyber security and privacy. He has published numerous scientific articles and papers, has edited a book and hosted several workshops on computer security, privacy and the Internet of Things. 

Dr. Fink was a three-year NSF IGERT Graduate Fellow at Virginia Polytechnic Institute and State University, where he completed his Ph.D. in computer science in 2006. Dr. Fink’s dissertation, “Visual Correlation of Network Traffic and Host Processes,” fostered the Hone technology that currently is an open-source software project. Dr. Fink was a software…

Source…

Nokia Mobile updates (December 9) its Security & OS update tracker with latest details


The official Nokia Mobile Security + OS update tracker page for Nokia smartphones has been updated on December 9, 2021. The page update brings details about the availability of the maintenance update or Security or firmware (MR) update for Nokia smartphones.

As per the latest updated information provided on the page, the November Security update is available for Nokia 9 PureView, Nokia 5.3, Nokia XR20, Nokia T20, Nokia G10, Nokia G50, Nokia 1.3, Nokia 1.4 and Nokia 2.2. This is surprising because recently November update became available for Nokia X20, Nokia G20, Nokia 2.4 too. But the updated page misses this information.

The October security update is available for other eligible Nokia smartphones. Though many other Nokia smartphones are yet on past Security patch levels. You can click here for our detailed coverage of all software update news related to Nokia smartphones. Click here to track November security update releases to Nokia smartphones as they happen.

Click on the link provided below to check the official update tracker page. Other smartphones are at older patch levels with many of them on February/March 2021 patch level.

Nokia Smartphone Security Maintenance Release Summary Page link

You may be already aware that the Nokia Smartphone Security Maintenance Release Summary page lists Build number and details like whether it is just a security patch or firmware update + security patch for a particular device. But now, Nokia Mobile has enhanced the details provided for each Nokia smartphone on the page. It has added new columns for “Security Patch Cadence” and “No guaranteed Security Patch updates after”.

The cadence tells us whether the smartphone is getting monthly or quarterly security updates. No guaranteed security patch update column mentions the time when smartphone’s 3-year promised security update period ends.

In case the security update is not yet available for your Nokia smartphone, you should check the build number of your smartphone and confirm it with the information provided on the page. If the build number for a particular device is mentioned in the list then only it gets the update.

Source…