News

This is a archive for News.

Monday, May 20, 2019 @ 05:05 PM gHale

It may be hard to think of a misconfigured system as a threat, but it can be the silent killer. To that point, publicly disclosed misconfiguration incidents increased 20 percent year-over-year, a new report found. While there was a rise in incidents, on the positive side, misconfigurations were not responsible for as many compromised records as the year before. There was a 52 percent decrease in records compromised because of this threat vector, according to the IBM X-Force Threat Intelligence Index 2019. RELATED STORIES
Manufacturing, Energy Targeted Industries
Manufacturing BEC Victims: Report
C-Suite a

Monday, May 20, 2019 @ 05:05 PM gHale

Manufacturing and energy sectors appear in the top ten of industries most targeted by attackers, a new report found. The fifth-most targeted industry is manufacturing, according to the IBM X-Force Threat Intelligence Index 2019. IBM Security released the IBM X-Force Threat Intelligence Index annually, which summarizes the most prominent threats raised by our research teams from over the past year. RELATED STORIES
Manufacturing BEC Victims: Report
C-Suite a Big Attack Target: Report
Manufacturing Report: Financial Attacks on Rise
Siemens, TÜV SÜD Partner on Safety-Security The manufacturing sector, which the report says includes

Monday, May 20, 2019 @ 03:05 PM gHale

A complex transnational organized cybercrime network that used GozNym malware in an attempt to steal an estimated $100 million from unsuspecting victims in the United States and around the world ended up dismantled, Department of Justice (DoJ) officials said Thursday. GozNym infected tens of thousands of computers worldwide, primarily in the United States and Europe, DoJ officials said. The operation was highlighted by the initiation of criminal prosecutions against members of the network in four different countries as a result of cooperation between the United States, Georgia, Ukraine, Moldova, Germany, Bulgaria, Europol and Eurojust. RELATED STORIES
Ex-CIA Officer

Monday, May 20, 2019 @ 02:05 PM gHale

A former CIA officer will spend the next 20 years of his life behind federal bars after his conviction for conspiracy to transmit national defense information to an agent of China. Kevin Patrick Mallory, 62, of Leesburg, Virginia, received 20 years in prison Friday which will be followed by five years of supervised release, said officials at the Department of Justice (DoJ). RELATED STORIES
Nine Charged in Online Identity Theft
Two Indicted for Anthem Attack
Feds Bust a Darknet Infrastructure Force
Accused ‘Malvertiser’ Extradited to U.S. “This sentence, together with the

Friday, May 17, 2019 @ 03:05 PM gHale

Somerville Fabricators, Inc. is a full-service fabricator of carbon and stainless structural steel that serves the Mid-West and Mid-Atlantic States, plus Canada. Headquartered in Mineral Wells, West Virginia, this 51-year-old family-owned company prides itself in establishing and maintaining a personal relationship with customers and staff. “Somerville’s motto is ‘Where Quality is Our Character’ because the customers’ absolute satisfaction must always be our ultimate goal,” said Peggy Somerville, vice president at Somerville Fabricators. In 2011, the company initiated a search to gain safety knowledge, better protect employees, and improve the company’s safety program. RELATED STORIES
Safety Pays Off: KIC

Thursday, May 16, 2019 @ 04:05 PM gHale

Fuji Electric has a software update to mitigate an out of bounds read vulnerability in its Alpha7 PC Loader, according to a report with NCCIC. Successful exploitation of this vulnerability could crash the device. kimiya of 9SG Security Team, working with Trend Micro Zero Day Initiative, discovered the vulnerability. RELATED STORIES
Schneider Mitigations for Modicon Controllers
Omron Working on Network Configurator for DeviceNet Fix
Siemens Fixes NXG I, NXG II Drives
SIMATIC PCS 7, WinCC, TIA Portal Security Updates Ready An attacker with low skill level could leverage the vulnerability. A motor

Thursday, May 16, 2019 @ 03:05 PM gHale

Schneider Electric has mitigations available to handle a use of insufficiently random values vulnerability in its Modicon M580, Modicon M340, Modicon Premium, and Modicon Quantum, according to a report with NCCIC. Successful exploitation of this remotely exploitable vulnerability, discovered by David Formby and Raheem Beyah of Fortiphyd Logic and Georgia Tech, could allow an attacker to hijack TCP connections or cause information leakage. RELATED STORIES
Omron Working on Network Configurator for DeviceNet Fix
Siemens Fixes NXG I, NXG II Drives
SIMATIC PCS 7, WinCC, TIA Portal Security Updates Ready
SCALANCE Security Update

Wednesday, May 15, 2019 @ 12:05 PM gHale

Omron has a series of workarounds while it is working on an update to mitigate an untrusted search path vulnerability in its Network Configurator for DeviceNet, according to a report with NCCIC. Successful exploitation of this vulnerability could allow an attacker to achieve arbitrary code execution under the privileges of the application. The researcher with the handle n0b0dy discovered the vulnerability. RELATED STORIES
Siemens Fixes NXG I, NXG II Drives
SIMATIC PCS 7, WinCC, TIA Portal Security Updates Ready
SCALANCE Security Update Available
Fix for LOGO!8 BM PLC Network Configurator for DeviceNet

Wednesday, May 15, 2019 @ 11:05 AM gHale

Siemens has a new version available to mitigate multiple vulnerabilities in its SIMATIC PCS 7, WinCC Runtime Professional, and WinCC (TIA Portal), according to a report with NCCIC. The remotely exploitable vulnerabilities include SQL injection, uncaught exception, and exposed dangerous method. RELATED STORIES
SCALANCE Security Update Available
Fix for LOGO!8 BM PLC
Siemens Fix for LOGO! Soft Comfort
Updates for SIMATIC WinCC, PCS 7 Hole Successful exploitation of these vulnerabilities, discovered by Vladimir Dashchenko and Sergey Temnikov from Kaspersky Lab, CNCERT/CC, and ChengBin Wang from Guoli Security Technology, could allow an attacker

Wednesday, May 15, 2019 @ 10:05 AM gHale

Siemens has an upgrade available to mitigate multiple vulnerabilities in its SCALANCE W1750D, according to a report with NCCIC. The remotely exploitable vulnerabilities include a command injection, information exposure, and cross-site scripting. RELATED STORIES
Fix for LOGO!8 BM PLC
Siemens Fix for LOGO! Soft Comfort
Updates for SIMATIC WinCC, PCS 7 Hole
Siemens Handles SIMATIC Holes Successful exploitation of these vulnerabilities, which Siemens self-reported, could allow an attacker to execute arbitrary commands within the underlying operating system, discover sensitive information, take administrative actions on the device, or expose session cookies for an