Cyber Security

Critical infrastructure under attack: defects become the weapon of choice

Photo of liralbes liralbes Send an email 3 hours ago
0 0 1 minute read
Critical infrastructure under attack: defects become the weapon of choice

“While attackers do take advantage of traditional software flaws, the greater concern for critical infrastructure is that it is widely available within the unsecured internet, where these systems can directly access essential services without proper access control,” added Himaja Motheram, security researcher at threat intelligence firm Censys.

One of the most overlooked fundamental issues, says Sparrow’s Lei, is the numerous critical systems, such as water treatment interfaces or medical imaging systems, which are not verified or default credentials/default credentials exposed to the public internet.

“In these cases, attackers don’t even need to exploit; they can simply log in,” Lei explained. “The core issue is not just a specific class of vulnerability; first of all, systemic exposure and accessibility of sensitive systems should never be reached directly.”

Photo of liralbes liralbes Send an email 3 hours ago
0 0 1 minute read
Photo of liralbes

liralbes

Related Articles

Russian APT28 harms Western logistics and IT companies to track Ukraine’s aid

Russian APT28 harms Western logistics and IT companies to track Ukraine’s aid

9 hours ago
Danabot malware developer infects his own PC -Krebs on Serivica

Danabot malware developer infects his own PC -Krebs on Serivica

12 hours ago
Fed and Microsoft Crush Lumma thieves, stealing millions of passwords

Fed and Microsoft Crush Lumma thieves, stealing millions of passwords

22 hours ago
Rapid injection defects in Gitlab Duo highlight risks for AI assistants

Rapid injection defects in Gitlab Duo highlight risks for AI assistants

1 day ago

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button