Using CODESYS ICS Automation Software?
Do this: Patch immediately.
Why: CODESYS recently released patches to address 11 security flaws that, if exploited, could result in information disclosure and denial-of-service conditions.
Additional Info: https://thehackernews.com/2022/06/critical-security-flaws-identified-in.html/
Using QNAP NAS Devices?
Do this: Upgrade and keep an eye out for patches.
Why: QNAP is addressing a critical PHP vulnerability that affects versions 7.1.x below 7.1.33, 7.2.x below 7.2.24, and 7.3.x below 7.3.11 that, if exploited, could allow attackers to achieve remote code execution.
Additional Info: https://nvd.nist.gov/vuln/detail/CVE-2019-11043/
Using VMware Horizon?
Do this: Ensure VMware Horizon servers have been patched successfully.
Why: Attackers are still exploiting Log4Shell to compromise VMware Horizon servers.
Additional Info: https://thehackernews.com/2022/06/log4shell-still-being-exploited-to-hack.html/
Send Us Your Comments
What did you think of this article? Send us a note to let us know what you liked, would like to see more of, or what we can do better. And don't be surprised if we reach back out with a small 'thank you' gift for your feedback.