Researchers at ONEKEY have discovered a vulnerability in WAGO networking products that could expose sensitive data and credentials. The bug allows attackers to exploit an unauthenticated configuration export vulnerability, potentially downloading firmware or VPN configurations. While the flaw only has a medium severity score due to the need for recent data export and system reboot, it does increase in certain industrial settings where reboot rates are low. WAGO advised users to update their builds of affected products.
Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity highlighted the need for better tracking of devices and their vulnerability to cyber threats. They noted
