“The server stores usernames and passwords in plaintext, making this vulnerability trivial to exploit,” IOActive says. The blind SQL injection bug allowed attackers to gain access to credentials stored in internal databases. IOActive was able to find a critical vulnerability in login forms. However, in the matter of AmosConnect, there was much left to be desired. International shipping firms and services often deal with confidential customer data and they may also hold valuable deliveries and so can be a target for threat actors.Īs we’ve previously seen in a case where hackers spied on a shipping service to work out where the valuable packages were in order to steal them, the criminal gains can be lucrative, and so security is critical. Stratos Global, an Inmarsat company, offers the AmosConnect communication shipboard platform to provide narrowband satellite communications, email, fax, interoffice communication, and more for those at sea. On Thursday, IOActive researchers unveiled a new analysis of AmosConnect 8.0, which uncovered two critical security issues that could give attackers unfettered access to systems and information. Researchers have uncovered severe vulnerabilities in software used by thousands of maritime ships worldwide. Updated: Researchers have found vulnerabilities in the AmosConnect communication shipboard platform.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |