industrial control systems – WindowsTechs.com

Threat landscape for industrial automation systems. H2 2023

Posted on March 19, 2024 by Kaspersky ICS CERT

Kaspersky ICS CERT shares industrial threat statistics for H2 2023: most commonly detected malicious objects, threat sources, threat landscape by industry and region. Continue reading Threat landscape for industrial automation systems. H2 2023→

ICS and OT threat predictions for 2024

Posted on January 31, 2024 by Evgeny Goncharov

Kaspersky experts make their predictions about ICS and OT threats: specifically, ransomware and hacktivist attacks, threats to logistics and transportation, etc. Continue reading ICS and OT threat predictions for 2024→

Threat landscape for industrial automation systems. Statistics for H1 2023

Posted on September 13, 2023 by Kaspersky ICS CERT

In the first half of 2023, the percentage of ICS computers on which malicious objects were blocked decreased from H2 2022 by just 0.3 pp to 34%. Continue reading Threat landscape for industrial automation systems. Statistics for H1 2023→

Armis, Honeywell Uncover Vulnerabilities in Honeywell Systems

Posted on July 18, 2023 by Karl Greenberg

Newly discovered vulnerabilities in distributed control systems could allow attackers access to systems supporting industrial, energy, chemical and other operations. Continue reading Armis, Honeywell Uncover Vulnerabilities in Honeywell Systems→

Threat landscape for industrial automation systems for H2 2022

Posted on March 6, 2023 by Kaspersky ICS CERT

In H2 2022, the percentage of ICS computers on which malicious objects were blocked increased by 3.5 percentage points compared to the previous six-month period, reaching 34.3%. Continue reading Threat landscape for industrial automation systems for H2 2022→

The secrets of Schneider Electric’s UMAS protocol

Posted on September 29, 2022 by Kaspersky ICS CERT

Kaspersky ICS CERT report on vulnerabilities in Schneider Electric’s engineering software that enables UMAS protocol abuse. Continue reading The secrets of Schneider Electric’s UMAS protocol→

Threat landscape for industrial automation systems for H1 2022

Posted on September 8, 2022 by Kaspersky ICS CERT

H1 2022 in numbers Geography In H1 2022, malicious objects were blocked at least once on 31.8% of ICS computers globally. Percentage of ICS computers on which malicious objects were blocked For the first time in five years of observations, the lowest percentage in the ‎first half of the year was observed in March.‎ During Continue reading Threat landscape for industrial automation systems for H1 2022→

Memory Forensic Analysis of a Programmable Logic Controller in Industrial Control Systems

Posted on July 19, 2022 by Forensic Focus

Winner of the Best Student Paper Award at DFRWS-EU 2022! Muhammad Haris Rais describes a step-wise approach to analyze the memory of specific PLCs, and subsequently find a generic framework applicable to all PLCs. By following a methodology that… Continue reading Memory Forensic Analysis of a Programmable Logic Controller in Industrial Control Systems→

PEM: Remote Forensic Acquisition of PLC Memory in Industrial Control Systems

Posted on July 14, 2022 by Forensic Focus

https://youtu.be/_pPxk5eTH_Y

Winner of the Best Paper Award at DFRWS-EU 2022, Nauman Zubair proposes a new memory acquisition framework to remotely acquire a programmable logic controller (PLC)’s volatile memory while the PLC is controlling a phys… Continue reading PEM: Remote Forensic Acquisition of PLC Memory in Industrial Control Systems→

ISaPWN – research on the security of ISaGRAF Runtime

Posted on May 23, 2022 by Evgeny Goncharov, Artem Zinenko, Alexander Nochvay

This report includes an analysis of the ISaGRAF framework, its architecture, the IXL and SNCP protocols and the description of several vulnerabilities the Kaspersky ICS CERT team had identified. Continue reading ISaPWN – research on the security of ISaGRAF Runtime→