Forescout Technologies has identified persistent malware attacks on operational technology and industrial control systems, with over 20% targeting engineering workstations. Two Mitsubishi workstations were compromised by the Ramnit worm, and newly discovered malware Chaya_003 designed to disrupt Siemens engineering processes was also detected. Non-specific OT malware remains the most prevalent threat, but Forescout noted the ability of hacking groups to create OT-specific malware with the aid of AI, and recommended workstations should be hardened, networks segmented and monitoring for threats intensified.
Critical HashiCorp Vulnerability Allows Attackers to Run Code on Host Machine
HashiCorp has disclosed a critical security vulnerability affecting its Vault products that could allow privileged operators to execute arbitrary code on the underlying host machine.
