Security News > 2020 > August > Vulnerability in Thales Product Could Expose Millions of IoT Devices to Attacks
Security researchers at IBM have discovered a potentially serious vulnerability in a communications module made by Thales for IoT devices.
Millions of devices could be impacted, but the vendor released a patch six months ago.
An attacker who has access to the targeted IoT device can exploit the vulnerability to bypass security mechanisms and gain access to this information, which can then be used to take control of a device or access the network housing it.
The impact of an attack depends on what the targeted IoT device is used for.
An attacker could, for example, target medical devices and manipulate readings or even tamper with the treatment delivered by the device.
News URL
Related news
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)
- SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks (source)
- CISA Adds ScienceLogic SL1 Vulnerability to Exploited Catalog After Active Zero-Day Attack (source)
- FortiManager critical vulnerability under active attack (source)
- Cisco Issues Urgent Fix for ASA and FTD Software Vulnerability Under Active Attack (source)