HackDig : Dig high-quality web security articles

US Takes Steps to Protect Electric System From Cyberattacks

The Biden administration is taking steps to protect the country’s electric system from cyberattacks through a new 100-day initiative combining federal government agencies and the private industry.The initiative, announced Tuesday by the Energy Department, encourages owners and operators of power plants and electric utilities to improve their capabilities for
Publish At:2021-04-20 13:20 | Read:121 | Comments:0 | Tags:Cyberwarfare ICS/OT NEWS & INDUSTRY Risk Management Cybe

Vulnerabilities in OpENer Stack Expose Industrial Devices to Attacks

Multiple vulnerabilities in the OpENer stack could be exploited in attacks aimed at supervisory control and data acquisition (SCADA) and other industrial systems that use OpENer.Maintained by EIPStackGroup and designed for I/O adapter devices, the OpENer EtherNet/IP (ENIP) stack offers support for multiple I/O and explicit connections, implements the ENIP an
Publish At:2021-04-16 15:20 | Read:225 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Vulnerabilities

Siemens Releases Several Advisories for 'NAME:WRECK' Vulnerabilities

Siemens released a total of 14 new advisories on Tuesday, including five describing the impact and remediations for the NAME:WRECK vulnerabilities disclosed on the same day.IoT security company Forescout on Tuesday revealed that four popular TCP/IP stacks — specifically FreeBSD, Siemens’ Nucleus, IPnet and NetX — are affected by a total of nine DNS-related f
Publish At:2021-04-14 08:32 | Read:113 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Vulnerabilities

At Least 100 Million Devices Affected by "NAME:WRECK" DNS Flaws in TCP/IP Stacks

Popular TCP/IP stacks are affected by a series of Domain Name System (DNS) vulnerabilities that could be exploited to take control of impacted devices, researchers with IoT security firm Forescout reveal.Collectively called NAME:WRECK and identified in the DNS implementations of FreeBSD, Nucleus NET, IPnet, and NetX, the flaws could also be abused to perform
Publish At:2021-04-14 00:40 | Read:118 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Vulnerabilities IoT Security

Iran Calls Natanz Atomic Site Blackout 'Nuclear Terrorism'

Iran on Sunday described a blackout at its underground Natanz atomic facility an act of “nuclear terrorism,” raising regional tensions as world powers and Tehran continue to negotiate over its tattered nuclear deal.While there was no immediate claim of responsibility, suspicion fell immediately on Israel, where its media nearly uniformly reported a devastati
Publish At:2021-04-11 15:40 | Read:126 | Comments:0 | Tags:Cyberwarfare ICS/OT NEWS & INDUSTRY

Cring Ransomware Targets Industrial Organizations

Cring ransomware operators are exploiting an old path traversal vulnerability in the FortiOS SSL VPN web portal to gain access to enterprise networks, Kaspersky warns.At the beginning of 2021, the threat actors behind the Cring ransomware were observed launching numerous attacks on European industrial enterprises, forcing at least one organization to shut do
Publish At:2021-04-08 11:40 | Read:106 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Virus & Threats Virus & M