CISA is warning enterprises about ongoing attacks against Internet-connected UPS devices and encouraging them to change default credentials and enforce MFA.
The source code's release on GitHub can potentially mean future attacks on IoT devices and routers, warn researchers.
Siemens has issued patches after a set of 13 vulnerabilities was discovered in the Nucleus TCP/IP stack.
The security of IoT and non-general purpose computing devices represents a systemic risk to corporate and national security, experts say.
A critical flaw in the ThroughTek Kalay Io platform could allow an attacker complete access to IP cameras, DVRs, and other devices.