US Ports Targeted with Zero-Day SQL Injection Flaw

Ports in the US have reported attacks using an SQL injection flaw made public by a hacker known as bRpsd, who released a fully working exploit online without notifying the vendor in advance.

By Catalin Cimpanu

Following these events, ICS-CERT, the US-CERT division in charge of security alerts for industrial control systems (ICS), has issued advisories regarding the vulnerability’s existence and the ongoing series of attacks.

The affected application is Navis WebAccess, the Web-based component of the Navis maritime transportation logistics software suite, sold by the Cargotec Corporation.

To continue reading, please click here.


Share this article


More articles from MAST...

Get in touch

Maritime Security
24/7 Emergency Telephone:+44 (0) 1218 209 946

Main Office: +44 (0) 1279 216726

Risk Consulting
Call: +44 (0) 1279 874 528

Security Systems
Call: +44 (0) 1279 874 521

Skip to content