ICS

Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs

Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs 2024-06-10 at 14:46 By Eduard Kovacs Cisco Talos researchers have found over a dozen vulnerabilities in AutomationDirect PLCs, including flaws that could be valuable to attackers. The post Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed […]

Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs Read More »

Rockwell Automation Urges Customers to Disconnect ICS From Internet

Rockwell Automation Urges Customers to Disconnect ICS From Internet 2024-05-22 at 17:02 By Eduard Kovacs Rockwell Automation is concerned about internet-exposed ICS due to heightened geopolitical tensions and adversarial cyber activity globally. The post Rockwell Automation Urges Customers to Disconnect ICS From Internet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Rockwell Automation Urges Customers to Disconnect ICS From Internet Read More »

Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution

Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution 2024-05-22 at 14:46 By Eduard Kovacs Claroty shows how Honeywell ControlEdge Virtual UOC vulnerability can be exploited for unauthenticated remote code execution. The post Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution Read More »

ICS Patch Tuesday: Advisories Published by Siemens, Rockwell, Mitsubishi Electric

ICS Patch Tuesday: Advisories Published by Siemens, Rockwell, Mitsubishi Electric 2024-05-15 at 13:31 By Eduard Kovacs Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in their products.  The post ICS Patch Tuesday: Advisories Published by Siemens, Rockwell, Mitsubishi Electric appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

ICS Patch Tuesday: Advisories Published by Siemens, Rockwell, Mitsubishi Electric Read More »

Russian Hackers Target Industrial Systems in North America, Europe

Russian Hackers Target Industrial Systems in North America, Europe 2024-05-02 at 15:16 By Eduard Kovacs Government agencies are sharing recommendations following attacks claimed by pro-Russian hacktivists on ICS/OT systems. The post Russian Hackers Target Industrial Systems in North America, Europe appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Russian Hackers Target Industrial Systems in North America, Europe Read More »

Honeywell: USB Malware Attacks on Industrial Orgs Becoming More Sophisticated

Honeywell: USB Malware Attacks on Industrial Orgs Becoming More Sophisticated 2024-04-29 at 17:01 By Eduard Kovacs An analysis conducted by Honeywell shows that much of the USB-borne malware targeting industrial organizations can still cause OT disruption. The post Honeywell: USB Malware Attacks on Industrial Orgs Becoming More Sophisticated appeared first on SecurityWeek. This article is

Honeywell: USB Malware Attacks on Industrial Orgs Becoming More Sophisticated Read More »

Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability

Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability 2024-04-23 at 14:02 By Eduard Kovacs Palo Alto Networks firewall vulnerability CVE-2024-3400, exploited as a zero-day, impacts a Siemens industrial product. The post Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability Read More »

Organizations Informed of 10 Vulnerabilities in Rockwell Automation Products 

Organizations Informed of 10 Vulnerabilities in Rockwell Automation Products  2024-03-27 at 15:01 By Eduard Kovacs In the past week Rockwell Automation addressed 10 vulnerabilities found in its FactoryTalk, PowerFlex and Arena Simulation products. The post Organizations Informed of 10 Vulnerabilities in Rockwell Automation Products  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Organizations Informed of 10 Vulnerabilities in Rockwell Automation Products  Read More »

Suspicious NuGet Package Harvesting Information From Industrial Systems

Suspicious NuGet Package Harvesting Information From Industrial Systems 2024-03-26 at 17:01 By Ionut Arghire A suspicious NuGet package likely targets developers working with technology from Chinese firm Bozhon. The post Suspicious NuGet Package Harvesting Information From Industrial Systems appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Suspicious NuGet Package Harvesting Information From Industrial Systems Read More »

UK Government Releases Cloud SCADA Security Guidance

UK Government Releases Cloud SCADA Security Guidance 2024-03-19 at 01:02 By Eduard Kovacs UK’s NCSC releases security guidance for OT organizations considering migrating their SCADA solutions to the cloud. The post UK Government Releases Cloud SCADA Security Guidance appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

UK Government Releases Cloud SCADA Security Guidance Read More »

ICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet Vulnerabilities 

ICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet Vulnerabilities  2024-03-12 at 18:03 By Eduard Kovacs Siemens and Schneider Electric publish March 2024 Patch Tuesday advisories to inform customers about over 200 vulnerabilities. The post ICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet Vulnerabilities  appeared first on SecurityWeek. This article is an

ICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet Vulnerabilities  Read More »

CISA’s OT Attack Response Team Understaffed: GAO

CISA’s OT Attack Response Team Understaffed: GAO 2024-03-12 at 15:46 By Eduard Kovacs GAO study finds that CISA does not have enough staff to respond to significant OT attacks in multiple locations at the same time. The post CISA’s OT Attack Response Team Understaffed: GAO appeared first on SecurityWeek. This article is an excerpt from

CISA’s OT Attack Response Team Understaffed: GAO Read More »

Cisco Releases Open Source Backplane Traffic Visibility Tool for OT 

Cisco Releases Open Source Backplane Traffic Visibility Tool for OT  2024-03-06 at 17:36 By Eduard Kovacs Cisco has released an open source PoC tool named Badgerboard designed for improved backplane network visibility for OT.  The post Cisco Releases Open Source Backplane Traffic Visibility Tool for OT  appeared first on SecurityWeek. This article is an excerpt

Cisco Releases Open Source Backplane Traffic Visibility Tool for OT  Read More »

Zeek Security Tool Vulnerabilities Allow ICS Network Hacking

Zeek Security Tool Vulnerabilities Allow ICS Network Hacking 2024-03-05 at 14:02 By Eduard Kovacs Vulnerabilities in a plugin for the Zeek network security monitoring tool can be exploited in attacks aimed at ICS environments. The post Zeek Security Tool Vulnerabilities Allow ICS Network Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Zeek Security Tool Vulnerabilities Allow ICS Network Hacking Read More »

Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers

Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers 2024-03-04 at 14:18 By Eduard Kovacs Researchers demonstrate that remote Stuxnet-style attacks are possible against many modern PLCs using web-based malware. The post Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers Read More »

Volt Typhoon Seen Exfiltrating Sensitive OT Data

Volt Typhoon Seen Exfiltrating Sensitive OT Data 2024-02-20 at 16:16 By Eduard Kovacs Volt Typhoon and two other threat groups that emerged in 2023 can pose a serious threat to ICS/OT, according to industrial cybersecurity firm Dragos. The post Volt Typhoon Seen Exfiltrating Sensitive OT Data appeared first on SecurityWeek. This article is an excerpt

Volt Typhoon Seen Exfiltrating Sensitive OT Data Read More »

Mitsubishi Electric Factory Automation Flaws Expose Engineering Workstations

Mitsubishi Electric Factory Automation Flaws Expose Engineering Workstations 2024-02-05 at 20:02 By Eduard Kovacs Critical and high-severity Mitsubishi Electric Factory Automation vulnerabilities can allow privileged access to engineering workstations.  The post Mitsubishi Electric Factory Automation Flaws Expose Engineering Workstations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Mitsubishi Electric Factory Automation Flaws Expose Engineering Workstations Read More »

Podcast: Palo Alto Networks Talks IT/OT Convergence

Podcast: Palo Alto Networks Talks IT/OT Convergence 2024-01-31 at 19:47 By SecurityWeek News SecurityWeek interviews Del Rodillas, Senior Director of Product Management at Palo Alto Networks, about the integration of IT and OT in the ICS threat landscape. The post Podcast: Palo Alto Networks Talks IT/OT Convergence appeared first on SecurityWeek. This article is an excerpt

Podcast: Palo Alto Networks Talks IT/OT Convergence Read More »

Westermo Switch Vulnerabilities Can Facilitate Attacks on Industrial Organizations

Westermo Switch Vulnerabilities Can Facilitate Attacks on Industrial Organizations 2024-01-26 at 15:18 By Eduard Kovacs CISA informs organizations that Westermo Lynx switches are affected by eight vulnerabilities and some devices are reportedly exposed to the internet. The post Westermo Switch Vulnerabilities Can Facilitate Attacks on Industrial Organizations appeared first on SecurityWeek. This article is an

Westermo Switch Vulnerabilities Can Facilitate Attacks on Industrial Organizations Read More »

Scroll to Top