mqtt security

CISA published an industrial-control-system advisory on May 7, 2026, warning that MAXHUB Pivot client application versions before v1.36.2 expose tenant email data and metadata through a hardcoded AES key and may allow unauthorized MQTT device enrollment causing denial of service. The advisory is...

YoSmart’s YoLink ecosystem has been the subject of a coordinated security disclosure: multiple vulnerabilities affecting the YoSmart cloud server, YoLink Smart Hub firmware, and the YoLink mobile application were reported and—per the vendor and independent researchers—have been addressed through...

CloudEdge users and administrators should treat a freshly publicized vulnerability affecting the CloudEdge mobile app and CloudEdge‑managed cameras as an urgent operational risk: the flaw permits remote attackers to harvest credentials and camera connection keys by abusing MQTT topic handling...

The industrial cybersecurity landscape continues to evolve rapidly, with new vulnerabilities emerging in critical systems that underpin both manufacturing and modern infrastructure. Recent advisories from the Cybersecurity & Infrastructure Security Agency (CISA) and Siemens have drawn urgent...