Forescout Research Identifies 21 Critical Vulnerabilities Impacting Global Infrastructure
0
0
Obscure Technologies, the sole distributor of Forescout Technologies in Africa, announces the release of “SIERRA:21 – Living on the Edge”, a groundbreaking analysis by Forescout Research, Vedere Labs. This report uncovers 21 new vulnerabilities affecting OT/IOT routers and open source components, exposing critical infrastructure in industries such as energy, healthcare, transportation, and emergency services to heightened cyber risks.
Key Findings of “SIERRA:21 – Living on the Edge”
Expansive Attack Surface:
Over 86,000 vulnerable routers remain exposed online globally.
Regions with the highest exposure include:
United States: 68,605 devices.
Canada: 5,580 devices.
Australia: 3,853 devices.
Severity of Vulnerabilities:
One critical vulnerability (CVSS score 9.6).
Nine high-severity vulnerabilities.
Eleven medium-severity vulnerabilities.
These flaws enable attackers to steal credentials, inject malicious code, and use routers as entry points into critical networks.
Challenges in Patching:
90% of affected devices are at their end of life, leaving them unpatchable.
Open source components like TinyXML lack active maintenance, increasing long-term risks.
Threat Actor Activity:
State-sponsored actors are using routers for espionage and custom malware.
Cyber criminals are leveraging compromised routers for botnets and proxy networks.
Industry Use Cases and Impact
Sierra Wireless routers, a focus of the research, are integral to:
Police vehicles for surveillance and network management.
Manufacturing plants for industrial asset monitoring.
Healthcare facilities for temporary connectivity.
Electric vehicle charging stations for network management.
The vulnerabilities in these devices could disrupt vital communications, posing risks to everyday life and critical services.
Call to Action
Elisa Constante, VP of Research at Forescout Research – Vedere Labs, emphasizes:“Neglected OT/IOT edge devices create a significant attack surface. Organizations must prioritize securing these devices to prevent their misuse for espionage, botnets, and other malicious activities.”
While patches have been issued for some vulnerabilities, the prevalence of unpatchable devices highlights the urgent need for holistic security strategies and proactive monitoring of OT/IOT environments.
Obscure Technologies: A Trusted Partner in Cyber Security
Founded in 2016, Obscure Technologies is at the forefront of cyber security innovation, delivering world-class security solutions through strategic vendor partnerships. Operating across Africa, Obscure Technologies specializes in end-to-end technology solutions that enable its partners to tackle evolving cyber threats with confidence.
Learn more about Forescout
For more information on Forescout’s solutions and how Obscure Technologies can support your organization, Click here.
Contact Us
Gauteng Office
📞 +27 12 941 2032
📍 Block B, Unit 2, Top Floor, Southdowns Office Park, 21 Karee Street, Irene, Centurion, 0157
Western Cape Office
📞 +27 12 941 2032
📍 403 Speakers Corner, 31-37 Parliament Street, Cape Town, 8001