IT Home reported on January 11 that the security company Nozomi released a report on Tuesday, saying that there are 23 vulnerabilities in wrenches with networking functionsIn the proof of concept, ransomware can be installed, rendering the wrench unusable.
The wrench involved in the report is the Bosch Rexroth hand-held nut tightener NXA015S-36V-B, which is widely used in the automotive manufacturing industry, and under normal working conditions, the wrench allows workers to quickly tighten the bolt to a specific tightness.
The researchers wrote
These vulnerabilities can plant ransomware on devices, leading to production line shutdowns and potentially massive financial losses for asset owners.In **, the researchers obtained root privileges on the wrench and installed a ransomware they invented called "dr1llcrypt".Another way to exploit this is by allowing a threat actor to hijack the tightening program while manipulating the onboard display, causing imperceptible damage to the product being assembled or making it unsafe to use.
According to the researchers:
Once these networked wrenches are compromised, the local operator cannot use the relevant buttons, and we have the ability to make the networked wrenches completely inoperable.The list of vulnerabilities attached by IT Home is as follows:
We can change the graphical user interface (GUI) to display arbitrary information on the screen and demand a ransom payment. Given that this attack is easy to automate across numerous devices, an attacker can quickly paralyze all the tools on the production line, potentially causing significant damage to the ultimate asset owner.
