Cybersecurity Threat Advisory: Intrado 911 Emergency Gateway
Posted on June 14, 2024 by Mike Beagles
As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.
This week, a new critical alert demands the immediate attention and action of the mission-critical community, underlining the crucial role that public-safety leaders play in maintaining the security of their operations.
Advisory Overview
MCP is actively monitoring a severe Structured Query Language (SQL) injection vulnerability in Intrado’s 911 Emergency Gateway (EGW), specifically concerning the login form; the vulnerability could enable a cyberattacker to execute malicious code, exfiltrate data, or manipulate the database. This vulnerability, flagged by the Cybersecurity and Infrastructure Security Agency (CISA) with two Common Vulnerabilities and Exposures (CVE) IDs (CVE-2024-1839 and CVE-2024-1839), has the potential to significantly disrupt emergency services delivery nationwide.
Intrado already has provided a patch to mitigate it. To apply the patch, any emergency gateways deployed on older revisions must be upgraded to the 5/5/5.6 brand. Intrado’s technical support group can be contacted at 1-888-908-4167 or E911support@intrado.com.
What Are the Recommendations?
MCP recommends installing the patch released by Intrado immediately. CISA also released the following recommendations earlier this week:
- Minimize network exposure for all control system devices and/or systems, ensuring they are internet accessible.
- Locate control system networks and remote devices behind firewalls and isolate them from business networks.
- When remote access is required, use more-secure methods, such as virtual private networks (VPNs); however, recognize that VPNs also may have vulnerabilities and should be updated to the most current version available. Also recognize that a VPN is only as secure as the connected devices.
- For public-safety agencies, this is a stark reminder of the critical need to prioritize cybersecurity and the importance of developing and managing a positive and effective cybersecurity plan.
Why Is it Noteworthy?
This vulnerability is significant for public-safety agencies because Intrado’s 911 EGW is widely used nationwide and thus has the potential to disrupt 911 operations.
Reference
ICS Advisory: Intrado 911 Emergency Gateway
If you are looking for guidance, please reach out. MCP offers a comprehensive cybersecurity solutions suite designed specifically for public-safety and justice entities and other critical-infrastructure organizations to help them determine their network, data, and application vulnerabilities. We can help you develop a complete cyberattack prevention strategy. Contact us today to learn more.
Topics: Cybersecurity