Homeland Security probes SSL flaw in RuggedCom gear securing critical infrastructure
Source: TechSpot - Posted by Dave Wreski   
Government The US Department of Homeland Security is investigating claims that a researcher has found a SSL vulnerability in Siemens’ RuggedCom network equipment. The security hole could reportedly be exploited by hackers to compromise the networks of critical infrastructure such as power plants. “Justin W. Clarke publicly reported that the RSA Private PKI key for SSL communication between a client/user and a RuggedCom switch can be identified in the ROS. An attacker may use the key to create malicious communication to a RuggedCom network device,” the report (PDF) by the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) for DHS noted.

Read this full article at TechSpot

Only registered users can write comments.
Please login or register.

Powered by AkoComment!