August 9, 2017

How a Port Misconfiguration Exposed Critical Infrastructure Data (

An anonymous reader writes: Attacks hitting companies’ electrical systems are possible, especially when information that provides insight into those systems’ weak points is freely accessible online. If you think that such a thing is unlikely, you probably haven’t yet heard about the most recent discovery made by UpGuard researchers: an open port used for rsync server synchronization has left the network of Power Quality Engineering (PQE) wide open to malicious attackers. They managed to access and exfiltrate 205 GB of data from PQE’s servers, up until the moment when the company secured its systems two days later after being notified of the problem.

Powered by WPeMatico