Widely used UPS devices can be hijacked and destroyed remotely

8 March 2022

Three vulnerabilities in ubiquitous APC Smart-UPS (uninterruptible power supply) devices could allow remote attackers to use them as an attack vector, disable or completely destroy them, Armis researchers have discovered. The vulnerable devices, developed by Schneider Electric subsidiary APC, are used all around the globe to provide emergency backup power for critical physical infrastructure (industrial facilities, hospitals, energy suppliers, data centers, etc.) The vulnerabilities in APC Smart-UPS devices The three vulnerabilities (CVE-2022-22805, CVE-2022-22806, and CVE-2022-0715) have collectively been dubbed TLStorm.

Read full article on Help Net Security

Date:

8 March 2022

Categorie(s):

NEWS

Tag(s):

Armis, IT, Schneider Electric, SSL/TLS, UPS

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024