SCADA / ICS – Page 4 – WindowsTechs.com

Tens of Vulnerabilities in Siemens PLM Products Allow Code Execution

Posted on January 15, 2021 by Eduard Kovacs

Siemens this week informed customers that some of its product development solutions are affected by a total of nearly two dozen vulnerabilities that can be exploited for arbitrary code execution using malicious files.
read more

Continue reading Tens of Vulnerabilities in Siemens PLM Products Allow Code Execution→

Vulnerabilities Can Allow Hackers to Create Backdoors in Comtrol Industrial Gateways

Posted on January 14, 2021 by Eduard Kovacs

Several vulnerabilities have been identified in Pepperl+Fuchs Comtrol IO-Link Master industrial gateways, including flaws that researchers claim can be exploited to gain root access to a device and create backdoors.
read more

Continue reading Vulnerabilities Can Allow Hackers to Create Backdoors in Comtrol Industrial Gateways→

Beyond the Pandemic: Far-ranging and Lasting Change Ahead for Industrial Networks

Posted on January 12, 2021 by Yaniv Vardi

IT and OT Teams in Critical Infrastructure and Manufacturing Companies Must be Able to Proactively Manage Risk
read more

Continue reading Beyond the Pandemic: Far-ranging and Lasting Change Ahead for Industrial Networks→

DoS Vulnerabilities Found in Rockwell’s FactoryTalk Linx and RSLinx Classic Products

Posted on January 8, 2021 by Eduard Kovacs

Researchers have discovered vulnerabilities that expose Rockwell Automation’s FactoryTalk Linx and RSLinx Classic products to denial-of-service (DoS) attacks.
read more

Continue reading DoS Vulnerabilities Found in Rockwell’s FactoryTalk Linx and RSLinx Classic Products→

Dragos Hires Former PepsiCo Deputy CISO Steve Applegate

Posted on January 6, 2021 by Mike Lennon

Industrial cybersecurity firm Dragos has hired Steve Applegate, former VP and Deputy CISO at PepsiCo, as Chief Information Security Officer (CISO).
read more

Continue reading Dragos Hires Former PepsiCo Deputy CISO Steve Applegate→

Critical Flaws in Kepware Products Can Facilitate Attacks on Industrial Firms

Posted on December 23, 2020 by Eduard Kovacs

Several critical vulnerabilities have been found by researchers in products from PTC-owned industrial automation solutions provider Kepware.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) last week published two advisories describing … Continue reading Critical Flaws in Kepware Products Can Facilitate Attacks on Industrial Firms→

CISA Issues ICS Advisory for New Vulnerabilities in Treck TCP/IP Stack

Posted on December 22, 2020 by Ionut Arghire

Security updates available for the Treck TCP/IP stack address two critical vulnerabilities leading to remote code execution or denial-of-service. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory to warn organizati… Continue reading CISA Issues ICS Advisory for New Vulnerabilities in Treck TCP/IP Stack→

German Government Backs Bill Requiring 5G Security Pledge

Posted on December 16, 2020 by Associated Press

German Chancellor Angela Merkel’s Cabinet approved a bill Wednesday that would require companies involved in setting up critical infrastructure such as high-speed 5G networks to guarantee that their equipment can’t be used for sabotage, espionage or te… Continue reading German Government Backs Bill Requiring 5G Security Pledge→

Securing the New IT/OT Reality

Posted on December 15, 2020 by Galina Antova

Security Teams Need to Able to Identify and Track Threats That Cross the IT/OT Boundary
read more

Continue reading Securing the New IT/OT Reality→

Vast Majority of OT Devices Affected by Urgent/11 Vulnerabilities Still Unpatched

Posted on December 15, 2020 by Eduard Kovacs

A vast majority of operational technology (OT) devices affected by the Urgent/11 vulnerabilities and many devices impacted by the CDPwn flaws remain unpatched, IoT security firm Armis reported on Tuesday.
read more

Continue reading Vast Majority of OT Devices Affected by Urgent/11 Vulnerabilities Still Unpatched→