Researchers at ONEKEY have discovered a vulnerability in WAGO networking products that could expose sensitive data and credentials. The bug allows attackers to exploit an unauthenticated configuration export vulnerability, potentially downloading firmware or VPN configurations. While the flaw only has a medium severity score due to the need for recent data export and system reboot, it does increase in certain industrial settings where reboot rates are low. WAGO advised users to update their builds of affected products.
US charges suspected LockBit ransomware developer
The US Department of Justice has charged Rostislav Panev, alleged developer for the LockBit ransomware group, with 41 counts including wire fraud and extortion. Panev,