9-11-17 – News This Past Week

Hackers Can Remotely Access Syringe Infusion Pumps to Deliver Fatal Overdoses
Now, it turns out that a syringe infusion pump used in acute care settings could be remotely accessed and manipulated by hackers to impact the intended operation of the device, ICS-CERT warned in an advisory issued on Thursday.
https://thehackernews.com/2017/09/hacking-infusion-pumps.html

 

Syringe infusion pumps can be fiddled with by remote attackers
The vulnerabilities, identified by independent researcher Scott Gayou, include buffer overflows, hard-coded credentials and passwords, improper certificate validation, passwords stored in the configuration field, and improper access control.
https://www.helpnetsecurity.com/2017/09/08/syringe-infusion-pump-vulnerabilities/

 

Symantec Researchers Reveal New Ramped-up Attacks on U.S. Power Grid
The malware is delivered using old phishing techniques, but with new payloads. Several power generation and control facilities, perhaps including one nuclear power plant, have already been penetrated.
http://googlewatch.eweek.com/security/symantec-researchers-reveal-new-ramped-up-attacks-on-u.s.-power-grid

 

Hackers lie in wait after penetrating US and Europe power grid networks
Nation-sponsored hackers have penetrated the operational networks multiple US and European energy companies use to control key parts of the power grid that supplies electricity to hundreds of millions of people, researchers warned Wednesday.
https://arstechnica.com/information-technology/2017/09/hackers-lie-in-wait-after-penetrating-us-and-europe-power-grid-networks/

 

Symantec: ‘Dragonfly’ Attack Group Targets Energy Companies In US, Turkey, Switzerland
The company also said the attackers were careful to cover their tracks. Dragonfly is said to have relied on off-the-shelf malware anyone can use, to have avoided using zero-day exploits, and to have used both Russian and French in various code strings to avoid giving away the country of origin via the language used. All of these factors led Symantec to hold off on officially attributing Dragonfly’s actions to a specific country.
http://www.tomshardware.com/news/symantec-dragonfly-cyberattack-energy-companies,35394.html

 

Serious Flaws Found in Westermo Industrial Routers
Qualys researcher Mandar Jadhav discovered that Westermo’s MRD-305-DIN, MRD-315, MRD-355 and MRD-455 industrial routers, which are used for remote access worldwide in the commercial facilities, critical manufacturing and energy sectors, are exposed to attacks by three vulnerabilities
http://www.securityweek.com/serious-flaws-found-westermo-industrial-routers

 

Fixing, upgrading and patching IoT devices can be a real nightmare
Ensuring cybersecurity for computers and mobile phones is a huge, complex business. The ever-widening scope and unbelievable variety of threats makes keeping these devices safe from cyber criminals and malware a full-time challenge for companies, governments and individuals around the world.
https://www.networkworld.com/article/3222651/internet-of-things/fixing-upgrading-and-patching-iot-devices-can-be-a-real-nightmare.html

 

Posted in Uncategorized.