In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking

Source: SecurityWeek — 22 May 2026

What we are tracking

Other noteworthy stories that might have slipped under the radar: CISA contractor exposes credentials, Mythos testing and new features, Huawei router flaw triggered telecom blackout. The post In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking appeared first on SecurityWeek.

RingSafe analysis

Three threads in this week’s round-up matter for India specifically. First, the Huawei router flaw that triggered a telecom blackout has direct parallels in Indian ISP last-mile fibre deployments still running Huawei H8XX-series CPE — operators should confirm firmware level against the CVE this week. Second, gas-station hacking maps directly to the OT exposure of unattended retail fuel outlets across IOC, BPCL, and HPCL networks, where pump controllers frequently ride on flat networks shared with corporate IT. Third, the new CISA KEV nomination form is worth CERT-In adopting in principle, since the current Indian advisory pipeline does not crowdsource exploitation evidence. MITRE ATT&CK: T1190 for the router flaw, T1133 (External Remote Services) for retail-fuel POS. Indian OT/CNI operators should treat this round-up as a quarterly hygiene checklist, not background reading.

Read the original report

In Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking → at SecurityWeek