Join thousands of people who receive the latest breaking cybersecurity news every day.
The U.S. Computer Emergency Readiness Team has issued two warnings on flaws in the embedded systems’ OS technology VxWorks as discovered by researcher HD Moore. One flaw deals with weakness in the hashing algorithm of the API authentication; The second regards debug settings being enabled by default and affects nearly 60 vendors’ products. Read the algorithm warning here. Read the debug warning here. [US CERT]
Renowned researcher HD Moore next week will
reveal how a misconfiguration by developers using the VxWorks operating
system found in many embedded systems has left a trail of vulnerable
products across various vendors’ products. Read the full article. [Dark Reading]