USA and Singapore cybersecurity agencies issue alert about vulnerabilities affecting IoT devices
USA’s CISA (Cybersecurity Infrastructure Security Agency) and Singapore’s CSA (Cyber Security Agency) publish alerts about vulnerabilities that might influence IoT devices. Security researchers have discovered multiple Domain Name System (DNS) implementation vulnerabilities in four TCP/IP network stacks. These vulnerabilities named WRECK can affect over 100 million IoT devices running on FreeBSD, IPnet, NetX, and Nucleus NET stacks. The vulnerable devices could be subjected to either denial-of-service (DoS) or remote code execution (RCE) attacks.