Security News > 2020 > August > Vulnerability in Thales Product Could Expose Millions of IoT Devices to Attacks
2020-08-19 15:05
Security researchers at IBM have discovered a potentially serious vulnerability in a communications module made by Thales for IoT devices.
Millions of devices could be impacted, but the vendor released a patch six months ago.
An attacker who has access to the targeted IoT device can exploit the vulnerability to bypass security mechanisms and gain access to this information, which can then be used to take control of a device or access the network housing it.
The impact of an attack depends on what the targeted IoT device is used for.
An attacker could, for example, target medical devices and manipulate readings or even tamper with the treatment delivered by the device.
News URL
Related news
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Devices (source)
- Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)
- PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks (source)
- CISA Flags Craft CMS Vulnerability CVE-2025-23209 Amid Active Attacks (source)