Researchers at ONEKEY have discovered a vulnerability in WAGO networking products that could expose sensitive data and credentials. The bug allows attackers to exploit an unauthenticated configuration export vulnerability, potentially downloading firmware or VPN configurations. While the flaw only has a medium severity score due to the need for recent data export and system reboot, it does increase in certain industrial settings where reboot rates are low. WAGO advised users to update their builds of affected products.

Hackers are selling counterfeit phones with crypto-stealing malware
Kaspersky has identified thousands of low-cost Android smartphones sold online that come with preinstalled malware programmed to steal cryptocurrency details. The devices are infected with