A cybercriminal is selling a zero-day exploit targeting the Human-Machine Interface (HMI) of Russian gas station automation systems, potentially affecting thousands of gas stations. This vulnerability could allow full control over fuel dispensing, payments, and system settings, leading to major disruptions and financial losses. #Nefteprodukttekhnika #BUKTS-G
Keypoints
- The zero-day exploit targets the HMI of the āŠŠ£Š TS-Gā gas station system developed by Nefteprodukttekhnika.
- The vulnerability allegedly allows full administrative access to control panels of affected gas pumps.
- Over 2,500 gas stations across Russia and CIS are reportedly impacted or at risk.
- The exploit could be used to manipulate fuel prices, steal fuel, or cause service outages.
- The seller is offering the exploit for $40,000, highlighting the threat to critical infrastructure.