HackDig : Dig high-quality web security articles for hackers

Vulnerabilities in Popular Open Source Management Tool Expose Hospitals to Attacks

A dozen vulnerabilities have been found in OpenClinic GA, a popular open source hospital management system, including flaws that can be exploited to access sensitive information or install malware on the hosting server.OpenClinic GA is described as an “integrated hospital information management system covering management of administrative, financial, clinica
Publish At:2020-07-10 00:29 | Read:97 | Comments:0 | Tags:SCADA / ICS Vulnerabilities

Honeywell Sees Rise in USB-Borne Malware That Can Cause Major ICS Disruption

Honeywell says it has seen a significant increase over the past year in USB-borne malware that can cause disruption to industrial control systems (ICS).Honeywell Industrial Cybersecurity this week published its 2020 USB Threat Report. The report is based on data collected over a period of 12 months by the company’s Secure Media Exchange (SMX) USB security pl
Publish At:2020-07-09 16:45 | Read:103 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Virus &a

OT Networks Are Becoming Essential Components of IT Risk Management, Governance

Recent global events have convinced us that digital transformation is here to stay and, in fact, accelerating. Companies that had already begun to embrace digital transformation were able to adapt more quickly to disruption and demonstrate greater resiliency. Now that the initial rush to support a shift to a more distributed model is behind us, we have an op
Publish At:2020-07-07 14:34 | Read:226 | Comments:0 | Tags:INDUSTRY INSIGHTS SCADA / ICS

BIG-IP Vulnerability Exploited to Deliver DDoS Malware

Hackers continue to exploit the recently patched BIG-IP security flaw and they have plenty of potential targets as researchers have identified thousands of vulnerable systems.The vulnerability affecting F5 Networks’ BIG-IP application delivery controller (ADC) is tracked as CVE-2020-5902 and it was disclosed last week by the vendor and Positive Technologies,
Publish At:2020-07-07 06:51 | Read:129 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Virus &a

ICS-Targeting Snake Ransomware Isolates Infected Systems Before Encryption

Recent samples of the Snake ransomware were observed isolating the infected systems to ensure that nothing interferes with the file encryption process, security researchers warn.Initially detailed in January this year, Snake (also known as EKANS) has emerged as a prevalent threat to industrial control systems (ICS), due to the targeting of processes specific
Publish At:2020-07-03 10:11 | Read:166 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Virus &a

Cyberattacks Possibly Involved in Explosions at Iranian Nuclear, Military Facilities

Recent fires and explosions at important Iranian facilities may have been caused deliberately as part of an operation that involved cyberattacks, according to reports.There have been several incidents at major Iranian industrial facilities in recent weeks, including a fire at the Natanz nuclear enrichment site and an explosion at the Parchin military complex
Publish At:2020-07-03 10:11 | Read:73 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY SCADA / ICS Virus & Thr

Researchers Show How Hackers Can Target ICS via Barcode Scanners

Industrial control systems (ICS) can be hacked through barcode scanners, researchers at cybersecurity services company IOActive said on Tuesday.Hackers previously demonstrated that keystrokes can be remotely injected via an industrial barcode scanner into the computer the scanner is connected to, which could result in the computer getting compromised.IOActiv
Publish At:2020-06-30 15:05 | Read:168 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Honeywell Adds New Features to Forge Cybersecurity Platform

Industrial giant Honeywell announced recently that it has added several new features to its Forge cybersecurity platform.The Forge Cybersecurity Suite, which Honeywell launched last year, is designed to help organizations protect industrial internet of things (IIoT) and operational technology (OT) assets. The company says the product has over 4,000 installat
Publish At:2020-06-29 13:32 | Read:92 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS

US Cybercom Virtual War Game Girds Against Increased Threats

Foreign hackers are taking advantage of the coronavirus pandemic to undermine institutions and threaten critical infrastructure, a top U.S. military cyber official said Thursday.The comments from Coast Guard Rear Adm. John Mauger of U.S. Cyber Command came a day after Defense Department officials briefed reporters on virtual war games that digital combatants
Publish At:2020-06-26 00:36 | Read:284 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY SCADA / ICS

Mitsubishi Patches Vulnerabilities Disclosed at ICS Hacking Contest

Mitsubishi Electric and its subsidiary ICONICS have released patches for the vulnerabilities disclosed earlier this year at the Pwn2Own Miami hacking competition, which focused on industrial control systems (ICS).White hat hackers earned a total of $280,000 for the exploits they demonstrated at the Zero Day Initiative’s Pwn2Own contest in January, including
Publish At:2020-06-22 15:31 | Read:85 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Microsoft Acquires Industrial Cybersecurity Company CyberX

Microsoft announced on Monday that it has acquired industrial cybersecurity company CyberX in an effort to expand its Azure IoT security capabilities and extend them to industrial IoT (IIoT) and operational technology (OT) systems.Financial terms of the deal have not been disclosed, but Israel’s Globes reported in early May that Microsoft had been preparing
Publish At:2020-06-22 14:30 | Read:224 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Management & Strategy Io

Vulnerability in OSIsoft PI System Can Facilitate Attacks on Critical Infrastructure

A stored cross-site scripting (XSS) vulnerability in OSIsoft PI System, a product often present in critical infrastructure facilities, can be exploited for phishing, privilege escalation and other purposes.OSIsoft PI System is a data management platform that delivers plant monitoring and analysis capabilities. According to the vendor’s website, PI System has
Publish At:2020-06-22 11:39 | Read:178 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities Vulnerabilit

New Reality of IT-OT: Convergence, Collaboration and Digital Transformation Acceleration

We All Share the Same Objective of Risk Reduction, But in an OT Environment That Must be Implemented in a Different WayIn recent months, our definition of critical infrastructure has expanded and the convergence of IT and operational technology (OT) networks has accelerated dramatically. As more employees began working from home, the infrastructure of their
Publish At:2020-06-16 14:11 | Read:110 | Comments:0 | Tags:INDUSTRY INSIGHTS SCADA / ICS

Ripple20: Flaws in Treck TCP/IP Stack Expose Millions of IoT Devices to Attacks

Millions of IoT devices worldwide could be vulnerable to remote attacks due to serious security flaws affecting the Treck TCP/IP stack, Israel-based cybersecurity company JSOF warned on Tuesday.Treck TCP/IP is a high-performance TCP/IP protocol suite designed specifically for embedded systems. JSOF researchers have discovered that the product is affected by
Publish At:2020-06-16 14:10 | Read:177 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities IoT Security

Critical Vulnerabilities Expose Siemens LOGO! Controllers to Attacks

Siemens’ LOGO! programmable logic controllers (PLCs) are affected by critical vulnerabilities that can be exploited remotely to launch denial-of-service (DoS) attacks and modify the device’s configuration.According to Siemens, the vulnerabilities impact all versions of its LOGO!8 BM devices, which are designed for basic control tasks. SIPLUS versions, which
Publish At:2020-06-12 12:18 | Read:129 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities


Share high-quality web security related articles with you:)