Risky Biz News: LockBit gang made $91 million from US attacks
Risky Biz News | Drone security research: New research from IOActive shows that unmanned aerial vehicles are vulnerable to electromagnetic fault injection (EMFI) attacks that can allow a threat actor to run malicious code even if the drone is running up-to-date firmware. The attack was successfully tested against a DJI Mavic Pro drone, but in theory, it should work on other vendors and models as well.
New EMFI Attack Against Drones Leads to Complete Take Over
gbhackers.com | Based on the recent reports by IOActive, Drones, also called Unmanned Aerial Vehicles (UAVs), are vulnerable to code injection, which would result in gaining complete access to the firmware and core functionality of the drone. Drones have been used in many industries like aviation, agriculture, and law enforcement. They are often operated remotely, which offers an attack surface for threat actors to gain control over them.
US warns of huge cyber-espionage campaign, and other cybersecurity news to know this month
weforum.org | This monthly round-up brings you key cybersecurity stories from the past month. Top cybersecurity news: US faces huge cyber-espionage campaign; Big British firms hit by cyberattacks on outsourcing suppliers; Highest AI cyberthreat will stem from deep fakes, says Microsoft’s Brad Smith.
New Research Shows Potential of Electromagnetic Fault Injection Attacks Against Drones
securityweek.com | New research shows the potential of electromagnetic fault injection (EMFI) attacks against unmanned aerial vehicles, with experts showing how drones that don’t have any known vulnerabilities could be hacked. The research was conducted by IOActive, a company specializing in cybersecurity research and assessments. The security firm previously found vulnerabilities affecting cars, ships, Boeing and other airplanes, industrial control systems, communication protocols, and operating systems.
New ‘state-of-the-art’ 5,000 square feet cyber security lab opens in Cheltenham
International Business Times | “State-of-the-art” cyber security lab opens in Cheltenham, with a primary focus on testing the vulnerability of vehicles, private jets, aircraft engines and industrial system exposures against cyber attacks.
IOActive Becomes a Founding Provider for New Framework from Open Compute Project Foundation to Improve Data Center and Cloud Security Posture