Data Breach Today

MARCH 14, 2024

Senator Urges Government to Tell Public About Little-Known Manufacturer Reset Codes Experts told ISMG that Chinese-made locks and commercial safes could pose national security risks when used by major U.S.

Risk 299

Risk Manufacturing Security Government 299

Security Affairs

OCTOBER 4, 2018

Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. For this reason, security experts warned in the past of the risks for Intel Management Engine vulnerabilities. ” concludes the experts.

Manufacturing 276

Manufacturing IT Access Sales 276

Security Affairs

MAY 8, 2022

The American agricultural machinery manufacturer AGCO announced that has suffered a ransomware attack that impacted its production facilities. AGCO, one of the most important agricultural machinery manufacturers, announced that a ransomware attack impacted some of its production facilities. To nominate, please visit:?

Agriculture 246

Agriculture Manufacturing Ransomware Cybersecurity 246

Security Affairs

NOVEMBER 9, 2024

” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. CVE-2024-8357 : Lack of root of trust in App SoC, risking persistent attacker control by bypassing boot security checks. x) may also be vulnerable.

Ransomware 324

Ransomware Manufacturing Access Risk 324

Data Breach Today

AUGUST 19, 2022

The extremely diverse architectures and systems within the tens of thousands of very specialized types of medical devices used in clinical settings adds to the complexity healthcare organizations and manufacturers face in managing cybersecurity risk for these products, says Phil Englert of H-ISAC.

Risk 245

Risk Manufacturing Security Cybersecurity 245

Security Affairs

MAY 12, 2021

National Security Agency (NSA), along with the DHS Cybersecurity and Infrastructure Security Agency (CISA), and the Office of the Director of National Intelligence (ODNI) have analyzed the risks and vulnerabilities associated with the implementation of 5G networks. ” concludes the report.”As Pierluigi Paganini.

Risk 282

Risk Communications Cybersecurity Manufacturing 282

Data Breach Today

MARCH 23, 2023

Utility Vendors Have Cut Back on Buying Chinese Transformers Due to Security Risks Utility companies have increasingly refrained from purchasing large power transformers from China given greater awareness of the security risks.

Risk 233

Risk Manufacturing Cybersecurity Security 233

Data Breach Today

MARCH 22, 2022

The integration of third-party components and software is an increasingly critical area of security risk that needs more attention from medical device manufacturers, says Anura Fernando, global head of medical device security at safety certification and consulting firm UL.

Risk 227

Risk Manufacturing Security 227

Security Affairs

AUGUST 13, 2019

Security expert discovered multiple flaws in 4G routers manufactured by several companies, some of them could allow attackers to take over the devices. G Richter, a security researcher at Pen Test Partners discovered multiple vulnerabilities 4G routers manufactured by different vendors. high severity CVSS v3. 0 base score) .

Risk 279

Risk Manufacturing Passwords Authentication 279

Data Breach Today

SEPTEMBER 7, 2023

The number of connected devices used in healthcare is growing as manufacturers constantly introduce new types of IoT equipment. The ever-evolving threat landscape is making it harder for many entities, particularly outpatient care providers, to keep up, said Justin Foster, CTO of Forescout.

Risk 287

Risk IoT Manufacturing IT 287

Data Breach Today

JULY 26, 2024

UEFI Developer Leaked a Secure Boot Asymmetric Key Hundreds of laptop and server models from mainstream manufacturers are at risk of hacking that bypasses protections meant to ensure only trusted software can load during computer bootup, warn researchers from California supply chain startup Binarly.

Manufacturing 320

Manufacturing Risk Security 320

Security Affairs

SEPTEMBER 16, 2024

Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure.

Risk 300

Risk Government Manufacturing IT 300

Data Breach Today

SEPTEMBER 23, 2024

Commerce Department Moves to Regulate Foreign Vehicle Tech Amid Security Fears The White House is proposing new regulations on connected vehicles that would prohibit manufacturers from importing software or hardware from the People's Republic of China and Russia, citing an ever-increasing threat landscape and heightened national security risks.

Manufacturing 306

Manufacturing Risk Security 306

Security Affairs

AUGUST 21, 2024

A flaw in millions of RFID cards manufactured by Shanghai Fudan Microelectronics allows these contactless cards to be cloned instantly. Researchers from security firm Quarkslab discovered a backdoor in millions of RFID cards manufactured by the Chinese chip manufacturer Shanghai Fudan Microelectronics.

Manufacturing 343

Manufacturing Paper Authentication Risk 343

Security Affairs

AUGUST 15, 2022

The experts pointed out that even if the count of exposed VNCs is low compared to previous years, some of the exposed VNCs belong to various organizations in the Critical Infrastructures sector such as water treatment plants, manufacturing plants, research facilities, etc. Follow me on Twitter: @securityaffairs and Facebook.

Risk 246

Risk Authentication Manufacturing Access 246

Data Breach Today

JANUARY 24, 2024

Experts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S. federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthorized, Chinese-manufactured video conference cameras.

Manufacturing 301

Manufacturing Security Government Risk 301

Data Breach Today

APRIL 9, 2021

More precise and pervasive cybersecurity threat modeling during manufacturers' development of medical devices - and also during the regulatory product review process - is critical for risk mitigation, says Kevin Fu, new acting director of medical device cybersecurity at the FDA.

Manufacturing 299

Manufacturing Cybersecurity Risk 299

Security Affairs

MARCH 14, 2022

While the Russia-Ukraine cyber conflict goes on, nation-state actors, crooks, and hacktivists continue to pose critical infrastructure at risk. Critical infrastructure is a privileged target for almost any kind of threat actor, the ongoing Russia-Ukraine cyber conflict is posing them at risk. ” reported researchers from Cyble.

Risk 246

Risk Financial Services Manufacturing Communications 246

Data Breach Today

JUNE 19, 2020

DHS Warns of Security Issues in Devices from Baxter, BD and Biotronik Federal authorities are sounding the alarm about cybersecurity vulnerabilities in six medical devices from three manufacturers. The device makers are providing risk mitigation advice.

Manufacturing 290

Manufacturing Cybersecurity Risk Security 290

Data Breach Today

MAY 11, 2021

Agency Found No Evidence Independent Repairs Increase Data Security Risks The FTC rejected arguments from major technology companies and trade groups that independent repair shops increase risks to data security.

Manufacturing 279

Manufacturing Cybersecurity Risk Security 279

Data Breach Today

JANUARY 31, 2024

The Water and Wastewater Sector Faces Growing Cybersecurity Risks, Officials Warn Leaders from the U.S.

Manufacturing 280

Manufacturing Cybersecurity Risk 280

Security Affairs

SEPTEMBER 13, 2024

Unfortunately, often manufacturers sell older OS versions as newer ones. Users may also mistakenly believe TV boxes are more secure than smartphones and are less likely to install antivirus software, increasing their risk when downloading third-party apps or unofficial firmware.

Manufacturing 352

Manufacturing Access Risk IT 352

Data Breach Today

DECEMBER 3, 2024

Flaws in Fuji's Tellus and V-Server Software Pose Risks to Critical Infrastructure Security researchers have uncovered 16 zero-day vulnerabilities in Japanese equipment manufacturer Fuji Electric's Tellus and V-Server remote monitoring software that enable attackers to execute malicious code in devices commonly used by utilities and other critical (..)

Manufacturing 253

Manufacturing Risk Security 253

Security Affairs

SEPTEMBER 16, 2024

The manufacturer also addressed two high-severity vulnerabilities, tracked as CVE-2024-45696 and CVE-2024-45698. “We do not recommend that security researchers act in this manner, as they expose end-users to further risks without patches being available from the manufacturer.” ” reads the advisory.

Manufacturing 326

Manufacturing Security Access Risk 326

Data Matters

OCTOBER 27, 2021

Medtech often involves a complex chain of actions involving a number of different parties, ranging from medical device manufacturers to programmers to physicians. There are, however, steps that those developing AI-based medtech can take to minimize risk. Third, seek and use advice on minimizing security risks from AI.

Artificial Intelligence 133

Artificial Intelligence Manufacturing Risk Privacy 133

Data Breach Today

DECEMBER 11, 2018

DHS, Philips Issue Advisories for HealthSuite Android Health App The lack of strong encryption in Philips' HealthSuite Health Android app leaves the mobile health software vulnerable to hacking, according to a new advisory issued by the medical device manufacturer and an alert from the Department of Homeland Security.

Encryption 202

Encryption Risk Manufacturing Security 202

KnowBe4

SEPTEMBER 18, 2024

Increased ransomware attacks on industrial control systems (ICS), mixed with general ICS insecurity found across the manufacturing sector, has given rise to a guide specifically addressing this risk.

Manufacturing 124

Manufacturing Ransomware Risk Phishing 124

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei.

Manufacturing 338

Manufacturing Risk Communications Security 338

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

e-Discovery 308

e-Discovery Communications Ransomware Government 308

Data Breach Today

SEPTEMBER 9, 2022

Vulnerabilities in certain medication infusion pump products from manufacturer Baxter could compromise a hospital's biomedical network. The flaws highlight the risks involving the acquisition and disposal of medical technology, says researcher Deral Heiland of Rapid7.

Manufacturing 244

Manufacturing Risk 244

Security Affairs

SEPTEMBER 30, 2023

The public release of this data would create a negative media frenzy around your company and pose significant reputational and legal risks.” Additionally, there is a significant amount of your customers’ credit card data and internal company documents, which undoubtedly hold sensitive information.

Ransomware 350

Ransomware Manufacturing Risk IT 350

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. Most of the public-facing cameras we discovered are manufactured by the Chinese company Hikvision: the Cybernews research team found over 3.37

Passwords 363

Passwords Manufacturing Authentication Government 363

Security Affairs

FEBRUARY 13, 2020

The United States continues to highlight the risks to national security in case of adoption of Huawei equipment and is inviting internet providers and telco operators in allied countries to ban Huawei. Chinese equipment is broadly adopted in many allied countries, including Germany, Italy, and Japan. . ” reported the AP News.

Manufacturing 363

Manufacturing Access Government Communications 363

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

However, industries reliant on shared devices—such as healthcare, retail, and manufacturing—face unique challenges. Similarly, in retail and manufacturing, delays caused by authentication procedures reduce overall efficiency. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication 132

Authentication Retail Manufacturing Passwords 132

Security Affairs

MAY 24, 2024

Although the Certificate Transparency Log is designed to improve security and transparency, its public nature leads to known Information Disclosure risks. For instance, suppose firewall manufacturer ACME Inc. 509 certificate for the DDNS domain, it inherently creates an information disclosure risk.

Manufacturing 342

Manufacturing Encryption Communications Cybersecurity 342

Security Affairs

JULY 5, 2020

British Prime Minister Boris Johnson is expected to begin phasing out the use of network equipment manufactured by the Chinese tech giant Huawei in the UK’s 5G network as little as six months, The Daily Telegraph reported. ” Early this month, the U.S. sanctions.

Risk 356

Risk Manufacturing Government Communications 356

Security Affairs

MARCH 15, 2022

“The Federal Office for Information Security (BSI) warns according to §7BSIlaw before using virus protection software from the Russian manufacturer Kaspersky. BSI remarks that the trust in the reliability and self-protection of a manufacturer as well as his authentic ability to act is crucial for the safe use of any defense software.

Manufacturing 288

Manufacturing Information Security Military Cybersecurity 288