A look at some of the spookiest stories from the week of Halloween in the world of automotive, IoT, Industry 4.0, and Enterprise Edge product cybersecurity.
Remember the Hack of WhatsApp’s VoIP Stack Vulnerability? Now It’s Heading to Court (Reuters)
WhatsApp accuses Israeli firm NSO of helping government spies hack into around 1,400 phones of users across the world, including dissidents, journalists, and diplomats. The lawsuit could potentially have major legal ramifications for the industry, regarding the liability platforms like WhatsApp could face as a result of hacks on their users.
India’s Largest Nuclear Plant Reportedly Hit by North Korean Malware Attack (ars technica)
Analyst says North Korea’s Dtrack malware was able to get attackers “domain controller-level access” at the plant. Attack is believed to have targeted research and technical data.
Attack on the Servers: Recently Patched Remote Code Execution Targeting Servers En Masse (ZDNet)
Despite the release of a path, researchers have discovered that the security flaw CVE-2019-11043 is being exploited by hackers to take over servers on a large scale. Researchers say exploiting the bug is actually a lot easier than you may think.
Security Researcher Gains Access to All Xiaomi Connected Feeders Worldwide - By Accident (The Register)
How easy is it to access a worldwide network of pet feeders? A lot easier than you may think. One researcher actually stumbled upon the hack by accident, gaining access to around 10,950 of the IoT pet feeders.
Senators Call for Investigation in the Wake of Capital One Data Breach (infosecurity)
Democratic senators call for probe of whether or not Amazon Web Services broke the law by failing to secure the infrastructure that was compromised in the Capital One breach, which is believed to have affected around 100 million customers in the United States and Canada.