all InfoSec news
Similarities between newly patched GE Cimplicity flaws, Sandworm attacks observed
SC Magazine feed for Strategy www.scmagazine.com
SecurityWeek reports that several recently addressed memory corruption vulnerabilities in the GE Cimplicity human-machine interface and supervisory control and data acquisition system, tracked as CVE-2023-3463, were noted by cybersecurity researcher Michael Heinzl, who discovered the bugs, to be similar to those exploited in attacks by the Russian state-sponsored threat operation Sandworm nearly a decade ago.
acquisition attacks bugs control corruption cve cybersecurity data device security emerging-technology exploited flaws human interface machine memory memory corruption michael reports researcher russian sandworm sponsored state system threat vulnerabilities vulnerability management