all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Similarities between newly patched GE Cimplicity flaws, Sandworm attacks observed

Add to bookmarks
July 20, 2023, 7:48 p.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

SecurityWeek reports that several recently addressed memory corruption vulnerabilities in the GE Cimplicity human-machine interface and supervisory control and data acquisition system, tracked as CVE-2023-3463, were noted by cybersecurity researcher Michael Heinzl, who discovered the bugs, to be similar to those exploited in attacks by the Russian state-sponsored threat operation Sandworm nearly a decade ago.

acquisition attacks bugs control corruption cve cybersecurity data device security emerging-technology exploited flaws human interface machine memory memory corruption michael reports researcher russian sandworm sponsored state system threat vulnerabilities vulnerability management

Visit resource

More from www.scmagazine.com / SC Magazine feed for Strategy

Smoke and (screen) mirrors: A strange signed backdoor 13 hours ago | www.scmagazine.com
backdoor masquerading network security ops +6
Attackers evade detection by leveraging Microsoft Graph API 15 hours ago | www.scmagazine.com
api api security application security attackers +14
Stronger cybersecurity aimed by Menlo Security, Google Cloud collaboration 19 hours ago | www.scmagazine.com
cloud cloud security collaboration customers +10
US arrests ex-cyber consultant accused of IT firm extortion 19 hours ago | www.scmagazine.com
address arrest arrests bleepingcomputer +21
Accelerated patching found with CISA KEV catalog-listed flaws 19 hours ago | www.scmagazine.com
agency catalog cisa cisa kev +24
Path traversal vulnerability elimination in software sought by feds 19 hours ago | www.scmagazine.com
agency bleepingcomputer cybersecurity devsecops +17
New AI security bill unveiled in Senate 19 hours ago | www.scmagazine.com
act ai act aiml ai security +14
Data breach impacts Airsoft community site 19 hours ago | www.scmagazine.com
breach cloud cloud storage community +19
Details on 2021 Chemonics hack remain scant 19 hours ago | www.scmagazine.com
agency compromised critical-infrastructure-security cyberattack +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Principal Security Engineer

@ Elsevier | Home based-Georgia
View on infosec-jobs.com

Infrastructure Compliance Engineer

@ NVIDIA | US, CA, Santa Clara
View on infosec-jobs.com

Information Systems Security Engineer (ISSE) / Cybersecurity SME

@ Green Cell Consulting | Twentynine Palms, CA, United States
View on infosec-jobs.com

Sales Security Analyst

@ Everbridge | Bengaluru
View on infosec-jobs.com

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

@ Sopra Steria | Courbevoie, France
View on infosec-jobs.com

Third Party Cyber Risk Analyst

@ Chubb | Philippines
View on infosec-jobs.com
View more jobs