Some weeks ago, a group of researchers disclosed a vulnerability that they had found on Ford’s website. The vulnerability, CVE-2021-27653, stemmed from a misconfigured instance of Pega Infinity customer engagement system running on Ford’s servers. According to...
Multiple security flaws have been discovered in CODESYS automation software and the WAGO programmable logic controller (PLC) platform that may be remotely abused to take control of a company’s cloud operational technology (OT) infrastructure, according to...
Earlier this year, in April, Microsoft’s Azure Defender for IoT security research group, also known as Section 52, revealed a number of critical memory allocation vulnerabilities in IoT and OT devices [1]. Among the list of products affected is a software designed by...
Navistar International Corp. data has been hacked into the dark web, exposing sensitive financial information less than a month after the heavy truck and military vehicle maker announced a cyberattack. The information was discovered on Marketo, a website that...
An attacker might exploit a new set of severe vulnerabilities in the Realtek RTL8170C Wi-Fi module to obtain elevated privileges on a device and hijack wireless communications. Experts from Israeli IoT security firm Vdoo said in a recent blog: “Successful...
