News

This is a archive for News.

Monday, January 14, 2019 @ 05:01 PM gHale

A UK man is facing almost three years in the slammer after pleading guilty in the UK to creating and using a botnet and possessing criminal property. Daniel Kaye (aka “BestBuy”), 30, from Egham, Surrey (UK) received a sentence of two years and eight months in prison for DDoS attacks targeting the Liberian telecommunications provider Lonestar MTN in 2015. RELATED STORIES
MA Man gets 10 Years for Hospital DDoS Attacks
German Man Confesses to Data Hack
Huge Money Mule Bust
3 Years for UK Teen Guilty of Threats Kaye first used rented

Monday, January 14, 2019 @ 05:01 PM gHale

A Somerville, Massachusetts, man will be doing 10 years in prison after being found guilty of launching distributed denial-of-service (DDoS) attacks against two healthcare organizations. Martin Gottesfeld, 34, who identified as a member of the Anonymous movement, ended up accused of launching DDoS attacks against the Boston Children’s Hospital and the Wayside Youth and Family Support Network in 2014. RELATED STORIES
German Man Confesses to Data Hack
Huge Money Mule Bust
3 Years for UK Teen Guilty of Threats
CA Man Heads to Slammer for DDoS Attacks The attacks on these organizations

Thursday, January 10, 2019 @ 07:01 PM gHale

Tridium has new software to mitigate a cross-site scripting vulnerability in its Niagara Enterprise Security, Niagara AX, and Niagara 4, according to a report with NCCIC. Successful exploitation of this remotely exploitable vulnerability, discovered by Daniel Santos and Elisa Costante of SecurityMatters, could allow an authenticated user to inject client-side scripts into some web pages that could then be viewed by other users. The following Tridium products are affected:
• Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6
• Niagara AX 3.8u4, all versions prior to 3.8.401.1
• Niagara 4.4u2, all versions prior to 4.4.93.40.2

Thursday, January 10, 2019 @ 06:01 PM gHale

Pilz GmbH & Co. KG (Pilz) discontinued one version and removed some functionality in another to take care of a clear-text storage of sensitive information vulnerability in its PNOZmulti Configurator, according to a report with NCCIC. Successful exploitation of this vulnerability could allow sensitive data to be read from the system. RELATED STORIES
Omron Clears CX-One CX-Protocol Hole
Emerson Patches DeltaV Hole
Schneider Clears IIoT Monitor Holes
Schneider Fixes Zelio Soft 2 Hole A safety circuit configuration tool, PNOZmulti Configurator all versions prior to 10.9 suffer from the vulnerability, discovered by Gjoko

Thursday, January 10, 2019 @ 03:01 PM gHale

Omron released an updated version to handle a type confusion vulnerability in its CX-Protocol within CX-One, according to a report with NCCIC. Successful exploitation of these vulnerabilities could allow an attacker to execute code under the privileges of the application. RELATED STORIES
Emerson Patches DeltaV Hole
Schneider Clears IIoT Monitor Holes
Schneider Fixes Zelio Soft 2 Hole
Hetronic Firmware Fix for Nova-M CX-One Versions 4.50 and prior, including CX-Protocol Versions 2.0 and prior suffer from the vulnerability, discovered by Esteban Ruiz (mr_me) of Source Incite, working with Trend Micro’s Zero Day Initiative.

Thursday, January 10, 2019 @ 03:01 PM gHale

Emerson has a patch to handle an authentication bypass vulnerability in its DeltaV Distributed Control System workstations, according to a report with NCCIC. Successful exploitation of this vulnerability could allow an attacker to shut down a service, resulting in a denial of service. RELATED STORIES
Schneider Clears IIoT Monitor Holes
Schneider Fixes Zelio Soft 2 Hole
Hetronic Firmware Fix for Nova-M
Yokogawa Update Fixes Driver Vulnerability DeltaV DCS Versions 11.3.1, 11.3.2, 12.3.1, 13.3.1, 14.3, R5.1, R6 and prior suffer from the vulnerability, discovered by Alexander Nochvay of Kaspersky Lab. A specially crafted

Wednesday, January 9, 2019 @ 06:01 PM gHale

By Gregory Hale
An oil refinery was undergoing a performance review some years ago and a team of security experts were touring the facility when they went out to a remote station a long way from the main plant. “We were working at an oil refinery and they had a remote station control room that was a mile off in the corner, and we went out to it for an inspection. What we found was the gate was hanging wide open and even though it was locked, you could crawl under the fence and then you were in a

Wednesday, January 9, 2019 @ 01:01 PM gHale

Security provider, CyberX, was awarded a patent for its ICS-aware risk analytics and machine learning technology. As industrial and critical infrastructure organizations look to safeguard Industrial Internet of Things (IIoT) and Industrial Control Systems (ICS) networks from cyberattacks that can result in costly production downtime, catastrophic safety failures, and environmental incidents, they are looking for new ways to rapidly detect and respond to advanced Zero Day threats that can bypass conventional perimeter and endpoint security solutions. RELATED STORIES
Radware Deals for Bot Mitigation Firm
Schneider, Transpara In Real-Time Monitoring Pact
CyberX, GE Ink Partnership

Tuesday, January 8, 2019 @ 04:01 PM gHale

Schneider Electric has a migration plan to handle path traversal, unrestricted upload of file with dangerous type, and XXE vulnerabilities in its IIoT Monitor, according to a report with NCCIC. Successful exploitation of these remotely exploitable vulnerabilities could allow a remote attacker to access files available to system users, arbitrarily upload and execute malicious files, and embed incorrect documents into the system output to expose restricted information. RELATED STORIES
Schneider Fixes Zelio Soft 2 Hole
Hetronic Firmware Fix for Nova-M
Yokogawa Update Fixes Driver Vulnerability
Schneider Fixes Pro-face GP-Pro EX Hole A

Tuesday, January 8, 2019 @ 04:01 PM gHale

Schneider Electric has a new version of software to fix an use after free vulnerability in its Zelio Soft 2, according to a report with NCCIC. Successful exploitation of this vulnerability could allow for remote code execution when opening a specially crafted project file. RELATED STORIES
Hetronic Firmware Fix for Nova-M
Yokogawa Update Fixes Driver Vulnerability
Schneider Fixes Pro-face GP-Pro EX Hole
Rockwell Fixes FactoryTalk Services Platform A programing platform, Zelio Soft 2 Versions 5.1 and prior suffer from the vulnerability, discovered by Trend Micro’s Zero Day Initiative working with rgod and