"Millions of Unpatched IoT, OT Devices Threaten Critical Infrastructure"

Researchers at Armis found that thousands of organizations remain at risk from the URGENT/11 and CDPwn collections of vulnerabilities, which affect operational technology (OT) gear and the internet of things (IoT).  Even though there are patches out that fix the vulnerabilities, many of the OT devices and IoT devices have not been patched yet.   The researchers discovered that 97 percent of the OT devices impacted by URGENT/11 have not been patched, despite fixes being delivered in 2019.  80 percent of those devices affected by CDPwn remain unpatched as well.  

Threatpost reports: "Millions of Unpatched IoT, OT Devices Threaten Critical Infrastructure"