Hackers can infect network-connected wrenches to install ransomware

Researchers from Nozomi have found 23 vulnerabilities in Bosch Rexroth’s Handheld Nutrunner NXA015S-36V-B, a network-connected wrench used worldwide for assembly in sensitive industries. These flaws could allow hackers to install malware to sabotage the devices, potentially causing safety issues by manipulating torque levels. Bosch is currently working on a patch, slated for release in January 2024. Scenarios tested by Nozomi included ransomware attacks and manipulation of control displays.