US Ports Targeted with Zero-Day SQL Injection Flaw

Ports in the US have reported attacks using an SQL injection flaw made public by a hacker known as bRpsd, who released a fully working exploit online without notifying the vendor in advance.

By Catalin Cimpanu

Following these events, ICS-CERT, the US-CERT division in charge of security alerts for industrial control systems (ICS), has issued advisories regarding the vulnerability’s existence and the ongoing series of attacks.

The affected application is Navis WebAccess, the Web-based component of the Navis maritime transportation logistics software suite, sold by the Cargotec Corporation.

To continue reading, please click here.

Source: news.softpedia.com

Leave a Reply

Follow us

Get in Touch
Close

Call Us

Main Office: +44 (0) 1279 216726

Risk Consulting
Email: [email protected]
Call: 44 (0) 1279 874 528

Physical and Asset Security
Email: [email protected]
Call: +44 (0) 1279 874 532

Security Systems
Email: [email protected]
Call: 44 (0) 1279 874 521

Maritime Security
Email: [email protected]
Duty Manager: +44 (0) 7827 359132
24/7 Emergency Telephone: +44 (0) 1202 045 833