This week’s roundup covers major cybersecurity developments, including suspected Iranian breaches of US gas station tank monitors, exposed CISA contractor credentials, and a Huawei router flaw that disrupted Luxembourg’s telecom network. It also highlights active exploitation of Four-Faith router vulnerabilities, a high-severity Open WebUI SSRF issue, and new efforts from Anthropic and CISA to improve threat sharing and exploited vulnerability reporting. #IranianHackers #CISA #Huawei #LuxembourgTelecom #Four-Faith #OpenWebUI #Anthropic
Keypoints
- Iranian hackers are suspected of breaching US gas station tank monitor systems.
- A CISA contractor exposed sensitive credentials in a public GitHub repository.
- Huawei router software flaws caused a major telecom outage in Luxembourg.
- Attackers are exploiting CVE-2024-9643 in Four-Faith industrial routers for botnets.
- CISA launched a new form to crowdsource reports of exploited vulnerabilities.