ICS/OT - Security Ticks

Study Finds Excessive Use of Remote Access Tools in OT Environments

Study Finds Excessive Use of Remote Access Tools in OT Environments 2024-09-10 at 17:31 By Eduard Kovacs The excessive use of remote access tools in OT environments can increase the attack surface, complicate identity management, and hinder visibility. The post Study Finds Excessive Use of Remote Access Tools in OT Environments appeared first on SecurityWeek. […]

React to this headline:

Study Finds Excessive Use of Remote Access Tools in OT Environments Read More »

Beckhoff TwinCAT/BSD Vulnerabilities Expose PLCs to Tampering, DoS Attacks

ICS, ICS/OT, vulnerability / SecurityTicks

Beckhoff TwinCAT/BSD Vulnerabilities Expose PLCs to Tampering, DoS Attacks 2024-08-29 at 15:16 By Eduard Kovacs Beckhoff Automation has patched several vulnerabilities in its TwinCAT/BSD operating system for industrial PCs. The post Beckhoff TwinCAT/BSD Vulnerabilities Expose PLCs to Tampering, DoS Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Beckhoff TwinCAT/BSD Vulnerabilities Expose PLCs to Tampering, DoS Attacks Read More »

ICS/OT Security Firms Announce Product Updates

ICS, ICS/OT, security product / SecurityTicks

ICS/OT Security Firms Announce Product Updates 2024-08-29 at 11:46 By Eduard Kovacs Dragos has announced the latest release of its OT security platform, and Nozomi Networks has teamed up with Mandiant for threat intelligence. The post ICS/OT Security Firms Announce Product Updates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

ICS/OT Security Firms Announce Product Updates Read More »

Ransomware Attacks on Industrial Firms Surged in Q2 2024

Dragos, ICS, ICS/OT, Ransomware / SecurityTicks

Ransomware Attacks on Industrial Firms Surged in Q2 2024 2024-08-15 at 18:16 By Eduard Kovacs Dragos has seen a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to the previous quarter. The post Ransomware Attacks on Industrial Firms Surged in Q2 2024 appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Ransomware Attacks on Industrial Firms Surged in Q2 2024 Read More »

ICS Patch Tuesday: Advisories Released by Siemens, Schneider, Rockwell, Aveva

ICS Patch Tuesday, ICS/OT / SecurityTicks

ICS Patch Tuesday: Advisories Released by Siemens, Schneider, Rockwell, Aveva 2024-08-14 at 12:05 By Eduard Kovacs ICS Patch Tuesday advisories have been published by Siemens, Schneider Electric, Rockwell Automation, Aveva and CISA. The post ICS Patch Tuesday: Advisories Released by Siemens, Schneider, Rockwell, Aveva appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

ICS Patch Tuesday: Advisories Released by Siemens, Schneider, Rockwell, Aveva Read More »

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption

ICS, ICS/OT, IoT Security, power, Vulnerabilities, vulnerability / SecurityTicks

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption 2024-08-08 at 16:16 By Eduard Kovacs Vulnerabilities found in solar power systems could have been exploited by hackers to cause disruption and possibly blackouts. The post Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption Read More »

US Offering $10 Million Reward for Iranian ICS Hackers

Government, ICS/OT, reward / SecurityTicks

US Offering $10 Million Reward for Iranian ICS Hackers 2024-08-08 at 16:16 By Eduard Kovacs The US is offering up to $10 million for Iranian individuals accused of hacking water utility industrial control systems last year. The post US Offering $10 Million Reward for Iranian ICS Hackers appeared first on SecurityWeek. This article is an

React to this headline:

US Offering $10 Million Reward for Iranian ICS Hackers Read More »

Over 40,000 Internet-Exposed ICS Devices Found in US: Censys

ICS, ICS/OT / SecurityTicks

Over 40,000 Internet-Exposed ICS Devices Found in US: Censys 2024-08-07 at 22:16 By Eduard Kovacs Censys has found more than 40,000 internet-exposed ICS devices in the US, and notifying owners is in many cases impossible. The post Over 40,000 Internet-Exposed ICS Devices Found in US: Censys appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Over 40,000 Internet-Exposed ICS Devices Found in US: Censys Read More »

Security Bypass Vulnerability Found in Rockwell Automation Logix Controllers

ICS, ICS/OT, Rockwell Automation / SecurityTicks

Security Bypass Vulnerability Found in Rockwell Automation Logix Controllers 2024-08-02 at 15:16 By Eduard Kovacs A high-severity security bypass vulnerability tracked as CVE-2024-6242 has been found and fixed in Rockwell Automation Logix controllers. The post Security Bypass Vulnerability Found in Rockwell Automation Logix Controllers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Security Bypass Vulnerability Found in Rockwell Automation Logix Controllers Read More »

AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco

Cisco, ICS, ICS/OT, OT, report / SecurityTicks

AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco 2024-07-30 at 17:01 By Eduard Kovacs Cisco has published its inaugural State of Industrial Networking report, based on a survey of 1,000 individuals. The post AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco Read More »

Progress Patches Critical Telerik Report Server Vulnerability

CISA, CVE-2024-6327, ICS/OT, Progress Software, Telerik Report Server, Vulnerabilities / SecurityTicks

Progress Patches Critical Telerik Report Server Vulnerability 2024-07-26 at 17:46 By Ionut Arghire Progress Software calls attention to a critical remote code execution flaw in the Telerik Report Server product. The post Progress Patches Critical Telerik Report Server Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Progress Patches Critical Telerik Report Server Vulnerability Read More »

Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment

ICS, ICS/OT, Siemens, Vulnerabilities, vulnerability / SecurityTicks

Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment 2024-07-24 at 17:46 By Eduard Kovacs Siemens has released out-of-band updates to patch two potentially serious vulnerabilities in products used in energy supply. The post Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment Read More »

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating

Featured, FrostyGoop, ICS malware, ICS/OT, Russia, Ukraine / SecurityTicks

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating 2024-07-23 at 13:31 By Eduard Kovacs The FrostyGoop ICS malware was used recently in an attack against a Ukrainian energy firm that resulted in loss of heating for many buildings. The post FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating appeared first on SecurityWeek. This

React to this headline:

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating Read More »

ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories

ICS, ICS/OT, OT, Schneider Electric, Siemens, Vulnerabilities / SecurityTicks

ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories 2024-07-10 at 15:01 By Ionut Arghire Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in industrial and OT products. The post ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories Read More »

Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations

ICS, ICS/OT, PTC, vulnerability / SecurityTicks

Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations 2024-07-02 at 12:16 By Eduard Kovacs PTC has patched a critical vulnerability in the Creo Elements/Direct License Server that can be exploited for unauthenticated command execution. The post Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations appeared

React to this headline:

Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations Read More »

Gas Chromatograph Hacking Could Have Serious Impact: Security Firm

Emerson, ICS, ICS/OT / SecurityTicks

Gas Chromatograph Hacking Could Have Serious Impact: Security Firm 2024-06-27 at 15:36 By Eduard Kovacs Critical vulnerabilities have been found in an Emerson gas chromatograph and Claroty warns that attacks could have a serious impact. The post Gas Chromatograph Hacking Could Have Serious Impact: Security Firm appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Gas Chromatograph Hacking Could Have Serious Impact: Security Firm Read More »

Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector

energy, ICS, ICS/OT, Siemens, vulnerability / SecurityTicks

Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector 2024-06-26 at 13:01 By Eduard Kovacs Several vulnerabilities patched recently in Siemens Sicam products could be exploited in attacks aimed at the energy sector. The post Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector Read More »

CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch

ICS, ICS/OT / SecurityTicks

CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch 2024-06-19 at 14:31 By Eduard Kovacs CISA has notified RAD after finding a PoC exploit targeting a high-severity vulnerability in an outdated industrial switch. The post CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch appeared first on SecurityWeek. This

React to this headline:

CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch Read More »

Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE

ICS, ICS/OT, Rockwell Automation, Vulnerabilities, vulnerability / SecurityTicks

Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE 2024-06-14 at 13:46 By Eduard Kovacs Rockwell Automation has patched three high-severity vulnerabilities in its FactoryTalk View SE HMI software. The post Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE Read More »

ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA

ICS, ICS Patch Tuesday, ICS/OT / SecurityTicks

ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA 2024-06-12 at 12:16 By Eduard Kovacs Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in their industrial and OT products. The post ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA appeared first on SecurityWeek. This article

React to this headline:

ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA Read More »