In-brief: The Department of Homeland Security is warning companies to pay closer attention to supply chain security in the wake of attacks on networking infrastructure.
CERT
DHS: Hard-Coded Password Found in GE Industrial Networking Gear
In-brief: A hard-coded password in many versions of GE’s MultiLink industrial networking switches could open the door to hackers, the Department of Homeland Security ICS-CERT warned.
CERT Warns Wind Turbines Open to Compromise
In-brief: Wind turbines made by the UK firm XZERES Wind are susceptible to common, web-based attacks including cross site scripting, according to a warning published by the Industrial Control System CERT (ICS-CERT).
Hard Coded Password Sinks Fleet of DSL Routers
In-brief: A hard coded firmware password could provide remote hackers with access to a wide range of home broadband routers, underscoring the risk posed by shared hardware and software, according to an alert from Carnegie Mellon University’s CERT this week.
Researcher: Drug Pump the ‘Least Secure IP Device I’ve Ever Seen’
In-brief: A researcher studying the workings of a wireless-enabled drug infusion pump by the firm Hospira said the device utterly lacked security controls, making it “the least secure IP enabled device” he had ever worked with. His research prompted a warning from the Department of Homeland Security.
