News & Events

Vulnerabilities in Medical Devices, a Plea Deal in a Massive Botnet Case, and More: The Top News in Product Security for This Past Week

Karamba Security | September 6th, 2019
random shapes

A look at some of the top stories from this past week in the world of automotive, IoT, Industry 4.0, and Enterprise Edge product cybersecurity.

Hacker Pleads Guilty to Crafting Sartori Botnet that Infected Hundreds of Thousands of IoT Devices (Ars Technica)

android

A 21-year-old Washington man and two co-conspirators confessed to creating Sartori and two other botnets that infected more than 800,000 devices, including 32,000 devices belonging to a large Canadian ISP. The trio also sold denial of service attacks to the highest bidder.

New Malware “BRATA” Targets Brazil-based Android Devices - By Posing as a WhatsApp Update (SC Magazine)

android

The malware poses as a patch meant to fix a buffer overflow vulnerability in WhatsApp that can allow a remote code execution attack. More than 20 variants have been found so far.

Flaw Affecting Supermicro X9-X11 Servers Opens the Door to Remote Attacks (threatpost)

android

Researchers say the bug allows attackers to attain credentials for the server’s baseboard management controllers, giving them “virtually omnipotent control over a server and its contents.”

New Advisory Issued for Change Healthcare Cardiology Devices After Vulnerability Found (US Govt)

android

Warning from the US Department of Homeland Security says that flaws in cardiology machines could allow attackers with local system access to execute unauthorized arbitrary code.

Vulnerability Allows Remote Code Execution Attacks on EZAutomation EZPLC (Zero Day Initiative)

android

The flaw requires a user to visit a malicious page or open a dangerous file, and results from improper validation of user-supplied data.

Flaw in Philips HDI Ultrasound System Could Allow Hackers Access to Patient Images, Personal Data (Security Newspaper)

android

The flaw requires a user to visit a malicious page or open a dangerous file, and results from improper validation of user-supplied data.

Read more

Want to learn more?

Contact Us
Loc

USA

41000 Woodward Ave
Building East, Suite 350
Bloomfield Hills, MI 48304
Tel: +1 248-574-5171

Loc

Israel

24 HaNagar Street
Hod Hasharon
45277-13
Tel: +972 9 88 66 113

Loc

Germany

Wasserburger
Landstr. 264, Munich
81827
Tel: +49 151 1471 6088