News

This is a archive for News.

Friday, June 14, 2019 @ 05:06 PM gHale

Domain Name System (DNS) firewalls, also known as protective DNS, which are freely available and easy to install, could prevent 33 percent of cybersecurity data breaches from occurring, research from the Global Cyber Alliance (GCA) showed. DNS firewalls leverage threat intelligence from cybersecurity companies and/or public sources to automatically prevent users from visiting known malicious sites. Most often consumers visit a malicious site when they click on a malicious link or mistype a legitimate web address. Malicious software on a computer or phone can also cause a visit to a malicious site. RELATED STORIES
Hacking Group Employs Steganography
More

Thursday, June 13, 2019 @ 05:06 PM gHale

Becton, Dickinson and Company (BD) has mitigations and compensating controls to handle improper access control and unrestricted upload of file with dangerous type vulnerabilities in its Alaris Gateway Workstation, according to a report with NCCIC. Exploitation of these remotely exploitable vulnerabilities, discovered by Elad Luz of CyberMDX, could allow unauthorized arbitrary code execution, which could allow an attacker to view and edit device status and configuration details as well as cause devices to become unavailable. The vendor said the affected products are not sold in the United States. RELATED STORIES
Johnson Controls Fixes exacqVision Hole
WAGO

Thursday, June 13, 2019 @ 05:06 PM gHale

Johnson Controls created an upgrade to fix an improper authorization vulnerability in its exacqVision Enterprise System Manager (ESM), according to a report with NCCIC. Successful exploitation of this vulnerability, discovered by @bzyo_, could allow malicious code execution. RELATED STORIES
WAGO Clears Managed Switch Holes
Siemens Clears SCALANCE X Hole
Siemens has Fix for LOGO!8 Devices
Siemens Workaround for SIMATIC Ident Holes This vulnerability impacts exacqVision ESM v5.12.2 and prior. All Microsoft Windows operating systems are affected with the exception of Microsoft Windows Server. In the vulnerability, by default, excessive permissions to directories

Thursday, June 13, 2019 @ 05:06 PM gHale

WAGO has an update to handle multiple vulnerabilities in its Industrial Managed Switches 852-303, 852-1305, and 852-1505, according to a report with NCCIC. The vulnerabilities are a use of hard-coded credentials, use of hard-coded cryptographic key, and using components with known vulnerabilities. RELATED STORIES
Siemens Clears SCALANCE X Hole
Siemens has Fix for LOGO!8 Devices
Siemens Workaround for SIMATIC Ident Holes
Siemens has Update for Siveillance VMS Successful exploitation of these remotely exploitable vulnerabilities could allow a compromise of the managed switch, resulting in disruption of communication, and root access to the

Wednesday, June 12, 2019 @ 05:06 PM gHale

By Gregory Hale
A little while ago, a homeowner build a house in the hills of California that was right in the middle of a fire zone. So, to counteract the strong possibility it could get hit by a blaze, the homeowner tried to make it as fireproof as possible. He used special roof tiles to protect against fire embers, the road out front was fire resistant, there were two huge water tanks behind house, heat resistant windows, concreate and steel walls, and no wood exposed. In the end, 20 percent of the cost of the house went into

Wednesday, June 12, 2019 @ 03:06 PM gHale

By Gregory Hale
In an industry where things change at a snail’s pace, it can be difficult to measure success, but John Rudolph is trying to change that. “Things hadn’t changed much in 30 years,” said Rudolph, the president of Honeywell Process Solutions during his keynote Monday address at the 2019 Honeywell User Group in Dallas, TX. “I would go to do the work and nothing was there to tell me what my success was. Afterward, I would write a report and where would that report go? Often, no one would look at it. Lessons learned were not shared

Wednesday, June 12, 2019 @ 11:06 AM gHale

A failure of two preventive barriers in place to stop a blowout were the main causes of a blowout and rig fire that killed five workers at the Pryor Trust gas well in Pittsburg County, OK, in January 2018, a new report found. On January 22, 2018, a blowout and rig fire occurred at Pryor Trust 0718 gas well number 1H-9, located in Pittsburg County, Oklahoma. The fire killed five workers, who were inside the driller’s cabin on the rig floor, according to the report from the Chemical Safety Board (CSB). They died from thermal burn injuries and smoke and

Wednesday, June 12, 2019 @ 10:06 AM gHale

Siemens has workarounds and mitigations to handle a storing passwords in a recoverable format vulnerability in its SCALANCE X Switches, according to a report with NCCIC. Successful exploitation of this vulnerability, discovered by Christopher Wade from Pen Test Partners, could allow an attacker to reconstruct passwords for users of the affected devices if the attacker is able to obtain a backup of the device configuration. RELATED STORIES
Siemens has Fix for LOGO!8 Devices
Siemens Workaround for SIMATIC Ident Holes
Siemens has Update for Siveillance VMS
Hole in Medical Device DICOM Standard The

Wednesday, June 12, 2019 @ 10:06 AM gHale

Siemens has new firmware and workarounds to handle improper restriction of operations within the bounds of a memory buffer, and session fixation vulnerabilities in its LOGO!8 devices, according to a report with NCCIC. Successful exploitation of these remotely exploitable vulnerabilities could allow an attacker to read the communication between the affected device and a user, and compromise the availability of the targeted system. Thomas Meesters from cirosec GmbH and Ruhr University of Bochum, and Christian Siemers and Irakli Edjibia from Hochschule Augsburg reported these vulnerabilities to Siemens. RELATED STORIES
Siemens Workaround for SIMATIC Ident Holes
Siemens

Wednesday, June 12, 2019 @ 09:06 AM gHale

Siemens developed mitigations and workarounds to handle improper privilege management and clear text transmission of sensitive information vulnerabilities in its SIMATIC Ident MV420 and MV440 Families, according to a report with NCCIC. Successful exploitation of these remotely exploitable vulnerabilities could allow a remote attacker to escalate privileges and view data transmitted between the device and the user. Siemens self-reported the vulnerabilities. RELATED STORIES
Siemens has Update for Siveillance VMS
Hole in Medical Device DICOM Standard
Optergy Building Management System Fixed
Panasonic Fixes Control FPWIN Pro Holes The following SIMATIC Ident families suffer