Security News > 2022 > March > TLStorm exploits expose more than 20 million UPS units to takeover. Was yours one of them?
TLStorm exploits expose more than 20 million UPS units to takeover.
The exploits come, said Armis head of research Barak Hadad, in a time when even the least likely of devices has an internet connection that turns it into a potential threat.
"Until recently, assets, such as UPS devices, were not perceived as security liabilities. However, it has become clear that security mechanisms in remotely managed devices have not been properly implemented, meaning that malicious actors will be able to use those vulnerable assets as an attack vector," Hadad said.
Modified firmware updates are a method attackers use to establish persistence, Armis said, and on a device as unnoticed as a UPS it gives the attacker a chance to build a stronghold.
With over 20 million affected devices, it's a good idea to take the time now to assess whether or not your APC UPS units are affected.
Also See Share: TLStorm exploits expose more than 20 million UPS units to takeover.