CISA is warning about a denial-of-service flaw in several lives of Rockwell Automation controllers, as well as a SQL injection bug in Advantech iView.
CISA is warning enterprises about ongoing attacks against Internet-connected UPS devices and encouraging them to change default credentials and enforce MFA.
The source code's release on GitHub can potentially mean future attacks on IoT devices and routers, warn researchers.
Siemens has issued patches after a set of 13 vulnerabilities was discovered in the Nucleus TCP/IP stack.
The security of IoT and non-general purpose computing devices represents a systemic risk to corporate and national security, experts say.