Security News

Researchers say a critical denial-of-service vulnerability they discovered in Inductive Automation's Ignition Gateway could allow hackers to cause disruption on the plant floor. Researchers at industrial cybersecurity firm Claroty discovered that Ignition Gateway 8 is affected by a DoS vulnerability that could allow an attacker to cause significant disruption.

Aviat Networks, the leading expert in wireless transport solutions, announced new Frequency Assurance Software and integrated spectrum analyzer functionality to help customers protect their mission critical microwave links from interference in 6GHz. With Wi-Fi 6e now approved by the Federal Communications Commission, microwave licensees will have little or no protection from interference to their critical communications. Aviat's patent pending FAS Expert System is custom-built to monitor and detect interference, perform trend analysis of the network over time to track interference, and isolate problem links before noticeable impacts occur.

More than 64 percent of organizations suffered at least one successful attack within the last year, and 59 percent believe lack of network visibility poses a high or very high risk to their operations, ExtraHop reveals. As enterprise organizations and government agencies grapple with how to enable, manage, and secure newly distributed remote workforces, network visibility is more critical than ever as they adjust to the new IT reality.

This provides customers with an enhanced WiFi experience for critical video collaboration applications and the power of cloud-based AI for rapid problem resolution. The enhanced CloudVision WiFi offers real-time insight into the WiFi client journey, including the health of collaboration and video applications delivering optimal WiFi experiences through analytics and proactive remediation recommendations.

The details of the attacks against Xilinx 7-Series and Virtex-6 Field Programmable Gate Arrays have been covered in a paper titled "The Unpatchable Silicon: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs" by a group of academics from the Horst Goertz Institute for IT Security and Max Planck Institute for Cyber Security and Privacy. In contrast to other known side-channel and probing attacks against Xilinx and Altera FPGAs, the novel "Low-cost" attack aims to recover and manipulate the bitstream by leveraging the configuration interface to read back data from the FPGA device.

A potentially serious vulnerability discovered by researchers in Field Programmable Gate Array chips can expose many mission- and safety-critical devices to attacks. A team of researchers from Germany's Horst Görtz Institute for IT Security at Ruhr-Universität Bochum and the Max Planck Institute for Security and Privacy discovered that FPGA chips are affected by a critical vulnerability - they have named it Starbleed - that can be exploited to take complete control of the chips.

ECS, a leader in advanced technology, science, and engineering solutions, announced an expansion of its services as a Google Cloud Platform partner. Through the ECS Cloud Center of Excellence, ECS delivers solutions from leading cloud service providers to deploy mission-critical workloads to some of the largest organizations in the world.

BioCatch, the global leader in behavioral biometrics, announced it has completed a $145 million Series C investment led by Bain Capital Tech Opportunities, the growth investing business of Bain Capital. The investment will accelerate BioCatch's rapid growth, broaden its product offerings and further support its expanding client base into new verticals.

Google just issued a Chrome update with a note that says, "This update includes 1 [critical] security fix." The bug itself is still a secret, even though the Chromium core of the Chrome browser is an open source project.

By pairing the system with human security experts, Microsoft said it was able to develop an algorithm that was not only able to correctly identify security bugs with nearly 100% accuracy, but also correctly flag critical, high priority bugs 97% of the time. According to Microsoft, its team of 47,000 developers generate some 30,000 bugs every month across its AzureDevOps and GitHub silos, causing headaches for security teams whose job it is to ensure critical security vulnerabilities don't go missed.