Security News > 2020 > August > Vulnerability in Thales Product Could Expose Millions of IoT Devices to Attacks
2020-08-19 15:05
Security researchers at IBM have discovered a potentially serious vulnerability in a communications module made by Thales for IoT devices.
Millions of devices could be impacted, but the vendor released a patch six months ago.
An attacker who has access to the targeted IoT device can exploit the vulnerability to bypass security mechanisms and gain access to this information, which can then be used to take control of a device or access the network housing it.
The impact of an attack depends on what the targeted IoT device is used for.
An attacker could, for example, target medical devices and manipulate readings or even tamper with the treatment delivered by the device.
News URL
Related news
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
- CISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks (source)
- Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) (source)