Recent Cybersecurity Threats: Industrial Routers Vulnerability and Gas Station Hacks

Post Views: 4

Security News

Around the world, security news highlights several major incidents and developments.

Huawei Router Flaw Triggers Luxembourg Telecom Blackout

In July 2025, a previously unknown vulnerability in Huawei’s enterprise router software led to a complete telecom blackout in Luxembourg, affecting over three hours. The issue was confirmed by POST Luxembourg, stating it was a denial-of-service incident caused by unpatched behavior.

Four-Faith Industrial Router Exploitation Surges

CVE-2024-9643, a passwordless authentication bypass flaw in Four-Faith F3x36 industrial cellular routers, has seen increased exploitation since late April 2026.
Compromised devices are being used in botnets for further attacks, with additional Four-Faith router vulnerabilities also being exploited.

CISA Launches Online Nomination Form for KEV Submissions

The Cybersecurity and Infrastructure Security Agency (CISA) has created an online nomination form for submitting known exploited vulnerabilities (KEVs). This aims to help the agency identify and address active flaws more efficiently.

NanoCo Raises $12 Million in Seed Funding

NanoCo, the developer of the secure open-source AI assistant NanoClaw, has secured $12 million in seed funding. This investment will support the development of their AI technology.

US Gas Stations Targeted by Iranian Hackers

US officials believe that Iranian hackers compromised automatic tank gauge (ATG) systems at gas stations across multiple states.
The attackers exploited unprotected, internet-connected devices without passwords, altering display readings but not the actual fuel volume.
No physical harm or safety incidents have been reported, but this highlights potential risks to critical infrastructure.

Contractor Exposes CISA Credentials

A CISA contractor inadvertently exposed administrative credentials to multiple AWS GovCloud accounts and internal CISA systems through a publicly accessible GitHub repository.

Anthropic Introduces Feature Allowing Users to Share Cyber Threat Intelligence

Anthropic has updated its Mythos vulnerability discovery platform to enable users to share information about cyber threats with others, aiming to enhance collective defense.

Cloudflare Highlights Strengths and Limitations of Mythos

Cloudflare evaluated Anthropic’s Mythos model against over 50 internal repositories.
The model demonstrated capabilities in constructing exploit chains from multiple low-severity primitives and generating working proofs of concept.
However, Cloudflare noted challenges, including inconsistent model rejections, high false positive rates, especially in C/C++ codebases, and the requirement for a multi-stage harness rather than a generic agent for useful coverage and low-noise results.