As part of a project, I am looking at hacking vulnerabilities, and have been following some of the security press. Another remarkable discovery. That the vulnerabilities in the VxWorks embedded OS exists in hundred of millions of devices. Some have existed without discovery since 1987. In particular IOT devices, but also most anything that connects to the net. An sample excerpt of specific vulnerabilities were posted here: https://www.grc.com/sn/SN-725-Notes.pdf Page 10- This will be covered in the Vegas Black Hat conference next week on August 8- So expect more details then. Given all the healthcare, mobility and IOT systems involved, this is very serious.
See also coverage in Wired: https://www.wired.com/story/vxworks-vulnerabilities-urgent11/
(VxWorks has been corrected for this problem, but you must update your systems now)
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment