Exposed Fuel Tank Gauges Under Attack in the US

Threat actors are actively scanning and exploiting internet-exposed Automatic Tank Gauges (ATGs) at U.S. gas stations and fuel depots via unauthenticated TCP interfaces (commonly port 10001), allowing them to read and falsify tank readings, suppress alarms, interact with firmware, and potentially pivot to POS and back-office networks; the report urges immediate removal of ATGs from direct internet exposure, network segmentation, VPN/jump host access, firmware updates, and monitoring.