Infected by Malware USB Drives in Industrial Facilities Can Disrupt Industrial Control Systems
According to the recent report by Honeywell, a substantial percentage of the malware seen last year on USB drives used in industrial facilities was capable of targeting and disrupting industrial control systems (ICS). “The percentage of malware designed to propagate over USB or to specifically exploit USB for infection increased to 52%, significantly higher than the 37% seen in 2021.”
Binaré offers a security-testing platform to prevent various businesses from cyberattacks. Binaré is concerned about security of the IoT device your business is using. Come to our web page and assess the security risk your IoT device possesses with our FREE Demo! The link for the web page: https://binare.io/.
More information about the incident:
https://www.securityweek.com/81-malware-seen-usb-drives-industrial-facilities-can-disrupt-ics-honeywell?&web_view=true
Exploit Code out for Critical Realtek Flaw Affecting Many Networking Devices
“Exploit code has been released for a critical vulnerability affecting networking devices with Realtek’s RTL819x system on a chip (SoC), which are estimated to be in the millions.” The flaw can be tracked as CVE-2022-27255 and a malicious third-party could exploit it to hack vulnerable devices from various original equipment manufacturers (OEMs), such as routers, access points, signal repeaters, etc.
Binaré’s platform will check your IoT device, e.g. router, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at https://binare.io/!
More information about the incident:
https://www.bleepingcomputer.com/news/security/exploit-out-for-critical-realtek-flaw-affecting-many-networking-devices/?&web_view=true
OT and Enterprise Networks Under New Evil PLC Attack
“Cybersecurity researchers have elaborated a novel attack technique that weaponizes programmable logic controllers (PLCs) to gain an initial foothold in engineering workstations and subsequently invade the operational technology (OT) networks.” “Evil PLC” attack affects engineering workstation software from Rockwell Automation, Schneider Electric, GE, B&R, Xinje, OVARRO, and Emerson. Programmable logic controllers serve as vital component of industrial devices that control manufacturing processes in critical infrastructure sectors.
Binaré’s platform will check your IoT device, e.g. PLC, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at https://binare.io/!
More information about the incident:
https://thehackernews.com/2022/08/new-evil-plc-attack-weaponizes-plcs-to.html?&web_view=true
Millions of Arris Routers Under Path Traversal Attacks
“Security researcher Derek Abdine has published an advisory about vulnerabilities that exist in the MIT-licensed muhttpd web server.” The web server is part of Arris firmware that can be found in several router models. The vulnerabilities that the researcher has found include path traversal from the filesystem root, NULL pointer dereference, buffer over-read when defanging URLs. An estimated number of vulnerable routers directly connected to the internet is 19,000.
Binaré’s platform will check your IoT device, e.g. router, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at https://binare.io/!
More information about the incident:
https://www.malwarebytes.com/blog/news/2022/08/millions-of-arris-routers-are-vulnerable-to-path-traversal-attacks
The Urgent Need For the Healthcare Sector to Secure its IoT Devices
“A recent Department of Health and Human Service Cybersecurity Coordination analyst note urges healthcare entities to evaluate their current approach to securing Internet of Things (IoT) devices since DDoS and man-in-the-middle attacks have increased given that the rapid adoption of the devices.” It is highly recommended for provider organizations to avoid using universal plug-and-play technologies since they increase the equipment’s vulnerability to cyberattacks.
Binaré’s platform will check your IoT device, e.g. medical device, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at https://binare.io/!
More information about the incident:
https://www.scmagazine.com/analysis/device-security/why-the-health-sector-needs-to-secure-iot-devices-on-their-networks?&web_view=true
Free icons courtesy of flaticon.com by authors: Freepik