Vulnerabilities in Old Third-Party Software Components - Importance of SBoM for IoT/OT Devices

Explore a 39-minute conference talk from Black Hat that delves into the critical issue of vulnerabilities in old third-party software components and emphasizes the importance of Software Bill of Materials (SBoM) for IoT/OT devices. Examine how device manufacturers' reliance on "security by obscurity" and the "principle of many eyes" can backfire, potentially benefiting attackers. Follow the speakers' journey as they uncover over 20 vulnerabilities in a wireless gateway device used in industrial control systems and remote healthcare locations. Gain insights into the risks associated with integrating open source components and learn why having an SBoM is crucial for enhancing the security of IoT and OT devices in today's interconnected world.