Security Alerts & News
by Tymoteusz A. Góral

History
#850 Homeland Security warns thousands of industrial energy systems can be remotely hacked
Homeland Security has said that an internet-connected industrial monitoring device -- typically used in US industrial power plants and energy facilities -- is vulnerable to a string of serious security vulnerabilities.

The US government department's Computer Emergency Readiness Team (CERT) posted an advisory, saying that the ESC 8832 data controller, which allows a plant worker to see exactly how an industrial unit is working at a glance, could be trivially exploited by a "low skilled" attacker.

"The device supports different accounts with distribution of system privileges. An attacker can gain access to functions, which are not displayed in the menu for the user by means of brute force of a parameter," said the advisory.
Read more
#852 Microsoft removes 260-character path length limit in Windows 10 Redstone
#851 Alert: Microsoft warns of ZCryptor ransomware with self-propagation features
#850 Homeland Security warns thousands of industrial energy systems can be remotely hacked
#849 Small users in a big network
#848 Altair co-founder: Affordable LTE chips to make IoT real by 2018
#847 Bangladesh Bank officials perhaps played a part in $81m heist
#846 Samsung launches 1g-weighing 512GB SSD
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12