Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Flaws Found in Carlo Gavazzi Energy Monitoring Products

Swiss-based industrial and building automation solutions provider Carlo Gavazzi has released firmware updates for some of its energy monitoring products to address potentially serious vulnerabilities that could expose devices to remote cyberattacks.

Security researcher Karn Ganeshen discovered that Carlo Gavazzi’s VMU-C EM and VMU-C PV products running firmware versions prior to A11_U05 and A17 are affected by at least three security holes that have been classified as having “critical” and “high” severity.

The VMU-C is designed to record, monitor and transmit signals from energy meters, power analyzers and other VMU modules in an effort to help organizations manage energy efficiency. The device includes a web server that can be used to set up the system and monitor data.

According to an advisory published last week by ICS-CERT, the product has a flaw that allows access to most of the application’s functions without authentication (CVE-2017-5144), and a cross-site request...(continued)

View All Trending Stories