A look at some of the top stories from this past week in the world of automotive, IoT, Industry 4.0, and Enterprise Edge product cybersecurity.
Critical Flaw Exposes Sophos Cyberoam Appliances to Remote Code Execution (Security Week)
Critical flaw CVE-2019-17059 affects Cyberoam firewalls running CyberoamOS 10.6.6 MR-5 and earlier. There are reportedly over 96,000 internet-exposed Cyberoam appliances, including ones housed by enterprises, financial organizations, and educational institutions.
Demonstration Shows How Attackers could Remotely Control Buildings (IoT World Today)
McAfee researcher shows how the CVE-2019-9569 vulnerability could be exploited to seize control of the enteliBUS control system made by Delta Controls, which operates a wide range of industrial control systems.
Exclusive: U.S. Carried out Secret Cyber Strike on Iran in Wake of Saudi Oil Attack: Officials (Reuters)
The impact of the attack could take months to determine. One of the officials said the strike affected physical hardware, but did not provide further details.
Attacks on IoT Devices Soar in First Half of 2019 (Dark Reading)
Study finds 105 million attacks on IoT devices in first six months of 2019, compared to only 12 million in the first half of 2018.
Security Flaw Opens HP Computers to Code Execution Attacks (threatpost)
Vulnerability CVE-2019-6333 is rated as medium severity and affects the open source software Open Hardware Monitors, which is utilized by tens of millions of computers.