WTF: Police responded on Saturday night due to a zero-day
7 hours ago
- #law-enforcement
- #cybersecurity
- #zero-day
- Police in Germany were deployed nationwide to alert companies about a critical security vulnerability in Windchill and FlexPLM software.
- The Federal Criminal Police Office (BKA) coordinated the unusual late-night police visits to affected companies, handing out PTC's hotfix instructions.
- Administrators expressed confusion and irritation, with some companies not even using the vulnerable software.
- PTC claims no evidence of exploitation but lists specific Indicators of Compromise (IoC), suggesting successful attacks may have occurred.
- The BSI and CISA have not issued loud warnings, with the BSI stating the manufacturer had informed all customers.
- No patches or CVE IDs were available by early Monday afternoon, complicating structured threat intelligence efforts.