Microsoft has warned that hackers are using a closed web server to launch attacks on power grid infrastructure after the first attack on India’s grid was discovered by Chinese hackers.
According to the software giant, Boa servers were used in routers, security cameras and popular software development kits. As TechCrunch reports, even though the Boa was technically retired in the early 2000s, it’s still widely used in a variety of devices.
Microsoft announced this week that it has identified one million Internet-exposed Boa server components worldwide in one week. The company warned that the components “present a supply chain risk that could impact millions of organizations and devices.”
“Without developers managing a Boa web server, the known vulnerability could allow attackers to gain network access by quietly gathering information from files,” Microsoft said.
“In addition, those affected may not be aware that their devices are running services that use Boa’s closed web servers, and that firmware updates and downstream patches do not address known vulnerabilities.”
Power grids, as critical infrastructure, are valuable targets for hackers.
Earlier this year, the Department of Energy began strengthening security for the US power grid along its supply chain as it suspected state-sponsored actors from Russia and China may be targeting infrastructure.
“We really need to do a lot more,” Puyesh Kumar, director of the Office of Cyber Security, Energy Security and Emergency Response, told Bloomberg in March. “The energy industry is a very complex machine made up of many different components, many different players – and we really need to improve the security of all those parts.” By Charles Kennedy for Oilprice.com
By Charles Kennedy for Oilprice.com
More headline articles from Oilprice.com:
Read this article on OilPrice.com