Weekly Updates - Security Weekly Summary
Cybersecurity News
Security Weekly is a dedicated cybersecurity platform providing weekly updates on the latest developments in digital security. This comprehensive service covers threat intelligence, security news, technology trends, best practices, incident response strategies, and regulatory compliance. Tailored for individuals, IT professionals, and businesses, Security Weekly delivers timely and actionable insights to help stay ahead of cyber threats and maintain a secure digital environment.
The upcoming sections will look over the security breaches that transpired this week, along with highlighting notable occurrences within the cybersecurity domain.
Summary of Hacker Hijacking Industrial Control System at US Water Utility
Hackers associated with the Iran-linked hacktivist group Cyber Av3ngers took control of a system at the Municipal Water Authority of Aliquippa in Pennsylvania, targeting a booster station. Although the compromised system was quickly disabled, the group claimed responsibility for the attack, stating they breached water treatment stations in Israel since the Israel-Hamas conflict escalated. The attack involved exploiting vulnerabilities in an industrial control system (ICS) made by Israeli company Unitronics, specifically targeting a programmable logic controller (PLC) with an integrated human-machine interface (HMI). HMIs are often left exposed to the internet, making them susceptible to attacks even by low-skilled threat actors. While hacktivist groups may exaggerate their impact, experts emphasize the significance of such attacks, prompting increased attention to the cybersecurity of critical infrastructure, including water facilities. Pennsylvania State Police were notified of the incident, but it's unclear if federal authorities are involved in the investigation. Cyberattacks on the water sector are not uncommon, leading the US government agency CISA to offer a free vulnerability scanning service to organizations in this sector.
To read the full article follow the link below: Hackers Hijack Industrial Control System at US Water Utility - SecurityWeek
Critical ownCloud Flaws lead to Authentication Bypass
Open-source file-sharing and collaboration software, ownCloud, is facing critical vulnerabilities, the most severe of which (CVSS score 10/10) affects the graphapi app. This flaw exposes PHP environment configuration details, potentially revealing sensitive data like admin passwords and mail server credentials. Despite disabling the graphapi app not resolving the issue, ownCloud recommends changing admin passwords, Object-Store/S3 access keys, and mail server and database credentials. Another vulnerability (CVSS score 9.8/10) involves an authentication bypass in the WebDAV API, allowing unauthorized access, modification, or deletion of files. This impacts ownCloud core versions 10.6.0 to 10.13.0. A third bug (CVSS score 9/10) in the oauth2 app (versions prior to 0.6.1) could lead to subdomain validation bypass, enabling attackers to redirect callbacks to a domain controlled by them. Admins are advised to take preventive measures, and ownCloud plans to implement further safeguards in future releases.
To read the full article follow the link below:
Stay Informed and Stay Secure
All these articles can be found on SecurityWeek. Please refer to the original articles for more details, and full credit is duly given to the respective authors.
If you found this content valuable, give it a like to show your support!