2026³â 07¿ù 11ÀÏ Åä¿äÀÏ
 
 
  ÇöÀçÀ§Ä¡ > ´º½ºÁö´åÄÄ > Business

·£¼¶¿þ¾îºÎÅÍ µÅÁöµµ»ì±îÁö... ³ë·ÃÇØÁø »ç±âÇà°¢

 

Á¤Ä¡

 

°æÁ¦

 

»çȸ

 

»ýȰ

 

¹®È­

 

±¹Á¦

 

°úÇбâ¼ú

 

¿¬¿¹

 

½ºÆ÷Ã÷

 

ÀÚµ¿Â÷

 

ºÎµ¿»ê

 

°æ¿µ

 

¿µ¾÷

 

¹Ìµð¾î

 

½Å»óǰ

 

±³À°

 

ÇÐȸ

 

½Å°£

 

°øÁö»çÇ×

 

Ä®·³

 

Ä·ÆäÀÎ
Çѻ츲 ¡®¿ì¸®´Â ÇѽҸ²¡¯ ½Ò ¼Òºñ Ä·ÆäÀÎ ½Ã...
1000¸¸¿øÂ¥¸® Àΰø¿Í¿ì, °Ç°­º¸Çè Áö¿ø ¡®Æò...
- - - - - - -
 

Critical Infrastructure Still at High Risk: Forescout Research Spotlights 21 New Vulnerabilities

Impact includes popular routers, open-source components used to connect critical local networks in energy, healthcare, transportation and emergency services
´º½ºÀÏÀÚ: 2023-12-07

SAN JOSE, CALIF.--(Business Wire / Korea Newswire)--Forescout, a global cybersecurity leader, today released “SIERRA:21 - Living on the Edge,” an analysis of 21 newly discovered vulnerabilities within OT/IoT routers and open-source software components. The report — produced by Forescout Research - Vedere Labs, a leading global team dedicated to uncovering vulnerabilities in critical infrastructure — emphasizes the continued risk to critical infrastructure and sheds light on possible mitigations.

“SIERRA:21 - Living on the Edge” features research into Sierra Wireless AirLink cellular routers and some of its open-source components, such as TinyXML and OpenNDS. Sierra Wireless routers are popular — an open database of Wi-Fi networks shows 245,000 networks worldwide running Sierra Wireless for a variety of applications. For example, Sierra Wireless routers are used for police vehicles connecting to a central network management system or to stream surveillance video, in manufacturing plants for industrial asset monitoring, in healthcare facilities providing temporary connectivity and to manage electric vehicle charging stations. The 21 new vulnerabilities have the potential to stop vital communications that could impact everyday life.

Read the blog: Forescout Vedere Labs discloses 21 new vulnerabilities affecting OT/IoT routers

Forescout Research further finds:


·The attack surface is expansive with 86,000 vulnerable routers still exposed online. Less than 10% of these routers are confirmed to be patched against known previous vulnerabilities found since 2019.
·Regions with the highest number of exposed devices includes:

- 68,605 devices in The United States
- 5,580 devices in Canada
- 3,853 devices in Australia
- 2,329 devices in France
- 1,001 devices in Thailand
·Among the 21 vulnerabilities, one has critical severity (CVSS score 9.6), nine have high severity and 11 have medium severity. These vulnerabilities allow attackers to steal credentials, take control of a router by injecting malicious code, persist on the device and use it as an initial access point into critical networks.
·Patching can’t fix everything. 90 percent of devices exposing a specific management interface have reached end of life, meaning they cannot be further patched.
·It’s an uphill battle to secure supply chain components. Open-source software elements continue to go unchecked and increase the attack surface of critical devices, leading to vulnerabilities that may be hard for organizations to track and mitigate.

“We are raising the alarm today because there remain thousands of OT/IoT devices representing an increased attack surface that requires attention,” advises Elisa Constante, VP of Research, Forescout Research - Vedere Labs. “Vulnerabilities impacting critical infrastructure are like an open window for bad actors in every community. State-sponsored actors are developing custom malware to use routers for persistence and espionage. Cybercriminals are also leveraging routers and related infrastructure for residential proxies and to recruit into botnets. Our discoveries reaffirm the need for heightened awareness of the OT/IoT edge devices that are so often neglected.”

Sierra Wireless and OpenDNS have issued patches for the identified vulnerabilities. TinyXML is an abandoned open source project, so the upstream vulnerabilities will not be fixed and must be addressed downstream.



 Àüü´º½º¸ñ·ÏÀ¸·Î

Estée Lauder Strengthens UK Manufacturing as Whitman Facility Marks 60 Years of British Craftsmanship
Andersen Global Strengthens Global Mobility Capabilities with Addition of Courdid BV
Merrithew Expands Global Mindful Movement Leadership with Acquisition of GYROTONIC Organization
K-Pet Wellness Brands Make Southeast Asian Debut at Singapore Pet Festival 2026
KAYTUS Launches MotusAI Enterprise Token Management Platform
BitGo Launches Institutional DeFi Access to Aave, Spark, and Tesseract Through Narval Integration
LTM Introduces BlueVerse¢â Currency to Enable Outcome-Based Pricing in the Agentic AI Era

 

Aptiv Introduces Advanced Occupancy Classification, The Industry¡¯s Fi...
Clearlake Completes Strategic Acquisition of Pathway Capital Managemen...
LG Brings Life¡¯s Good Kitchen Fans to Seoul Through Seoul-Ful Kitchen...
Geoswift and SKUx Form Strategic Partnership to Build First-of-Its-Kin...
PUMA and Salehe Bembury Host Sound-Inspired Experience Ahead of Footba...
Seequent and Cascade Institute Partner to Map Canada¡¯s Deep Geotherma...
The Aesthetics of Spatial Integration: The Philosophy Behind LG¡¯s Bui...

 


°øÁö»çÇ×
¹Ìµð¾î¿Í M• Mediaour ØÚ体ä² ØÚô÷ä² ¿¥¿À MO ØÚä²
¾Ë¸®¾Ë A⋮⋮⋮ Allial Áß¹® Ç¥±â ä¹××尔 ä¹××ì³
À£ÇÁ·Ò W⋮⋮⋮ Welfrom 卫ÜØ êÛÝ£
¹ÙÀÌ¿ÀÀÌ´Ï B⋮ BIOINI ù±药研 ¹ÙÀÌ¿ÀÀÌ´Ï·¦ BIOINILAB ...
º£³×ÀÍ ¡Õ Beneik 宝Ò¬ìÌ, À̺ñÁî eBizh æ¶币òª EZ æ¶òª
¿¡³ÊÀÌÀ¯ ¡Õ¡Õ EnerEU 额Òö äþÒö
´º½ºÁö Áß¹®Ç¥±â´Â À½Â÷ Ç¥±â¹æ½Ä '纽ÞÙó¢ ´Ï¿ì½ºÁö'
¾Ë¸®À¯ºñ ^v Alliuv ä¹备 AV ä¹êó备, ¾Ë¶ã =^= Althle ä¹÷åìÌ
´ºÆÛ½ºÆ® New1st Áß¹® Ç¥±â 纽ììãæ(¹øÃ¼ Òïììãæ), N1 纽1
¿£ÄÚ½º¸ð½º ¡ÕC À̾¾ 'EnCosmos : EC' Áß¹® Ç¥±â ì¤ñµ
¾ÆÀ̵ð¾î·Ð Idearon Áß¹® Ç¥±â ì¤îè论 ì¤îèÖå
¾ËÇÁ·Ò ^ Alfrom ä¹尔ÜØ ä¹ì³ÜØ, ¿ÃÇÁ·Ò A⋮⋮ Allfrom &...

 

ȸ»ç¼Ò°³ | ÀÎÀçä¿ë | ÀÌ¿ë¾à°ü | °³ÀÎÁ¤º¸Ãë±Þ¹æÄ§ | û¼Ò³âº¸È£Á¤Ã¥ | Ã¥ÀÓÇѰè¿Í ¹ýÀû°íÁö | À̸ÞÀÏÁÖ¼Ò¹«´Ü¼öÁý°ÅºÎ | °í°´¼¾ÅÍ

±â»çÁ¦º¸ À̸ÞÀÏ news@newsji.com, ÀüÈ­ 050 2222 0002, ÆÑ½º 050 2222 0111, ÁÖ¼Ò : ¼­¿ï ±¸·Î±¸ °¡¸¶»ê·Î 27±æ 60 1-37È£

ÀÎÅͳݴº½º¼­ºñ½º»ç¾÷µî·Ï : ¼­¿ï ÀÚ00447, µî·ÏÀÏÀÚ : 2013.12.23., ´º½º¹è¿­ ¹× û¼Ò³âº¸È£ÀÇ Ã¥ÀÓ : ´ëÇ¥ CEO

Copyright ¨Ï All rights reserved..