ICS/OT ICS Patch Tuesday: Advisories Published by Siemens, Schneider, ABB, CISA Two dozen ICS Patch Tuesday advisories have been published by Siemens, Schneider Electric, CISA and ABB. Eduard KovacsSeptember 11, 2024
ICS/OT Study Finds Excessive Use of Remote Access Tools in OT Environments The excessive use of remote access tools in OT environments can increase the attack surface, complicate identity management, and hinder visibility. Eduard KovacsSeptember 10, 2024
ICS/OT Beckhoff TwinCAT/BSD Vulnerabilities Expose PLCs to Tampering, DoS Attacks Beckhoff Automation has patched several vulnerabilities in its TwinCAT/BSD operating system for industrial PCs. Eduard KovacsAugust 29, 2024
ICS/OT ICS/OT Security Firms Announce Product Updates Dragos has announced the latest release of its OT security platform, and Nozomi Networks has teamed up with Mandiant for threat intelligence. Eduard KovacsAugust 29, 2024
ICS/OT Ransomware Attacks on Industrial Firms Surged in Q2 2024 Dragos has seen a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to the previous quarter. Eduard KovacsAugust 15, 2024
ICS/OT Vulnerabilities Exposed Widely Used Solar Power Systems to Hacking, Disruption Vulnerabilities found in solar power systems could have been exploited by hackers to cause disruption and possibly blackouts. Eduard KovacsAugust 8, 2024
ICS/OT Over 40,000 Internet-Exposed ICS Devices Found in US: Censys Censys has found more than 40,000 internet-exposed ICS devices in the US, and notifying owners is in many cases impossible. Eduard KovacsAugust 7, 2024
ICS/OT Security Bypass Vulnerability Found in Rockwell Automation Logix Controllers A high-severity security bypass vulnerability tracked as CVE-2024-6242 has been found and fixed in Rockwell Automation Logix controllers. Eduard KovacsAugust 2, 2024
ICS/OT AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco Cisco has published its inaugural State of Industrial Networking report, based on a survey of 1,000 individuals. Eduard KovacsJuly 30, 2024
ICS/OT Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment Siemens has released out-of-band updates to patch two potentially serious vulnerabilities in products used in energy supply. Eduard KovacsJuly 24, 2024
ICS/OT ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in industrial and OT products. Ionut ArghireJuly 10, 2024
ICS/OT Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations PTC has patched a critical vulnerability in the Creo Elements/Direct License Server that can be exploited for unauthenticated command execution. Eduard KovacsJuly 2, 2024
ICS/OT Gas Chromatograph Hacking Could Have Serious Impact: Security Firm Critical vulnerabilities have been found in an Emerson gas chromatograph and Claroty warns that attacks could have a serious impact. Eduard KovacsJune 27, 2024
ICS/OT Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector Several vulnerabilities patched recently in Siemens Sicam products could be exploited in attacks aimed at the energy sector. Eduard KovacsJune 26, 2024
ICS/OT CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch CISA has notified RAD after finding a PoC exploit targeting a high-severity vulnerability in an outdated industrial switch. Eduard KovacsJune 19, 2024
ICS/OT Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE Rockwell Automation has patched three high-severity vulnerabilities in its FactoryTalk View SE HMI software. Eduard KovacsJune 14, 2024
ICS/OT Prevalence and Impact of Password Exposure Vulnerabilities in ICS/OT Analysis and insights on the prevalence and impact of password exposure vulnerabilities in ICS and other OT products. Eduard KovacsJune 13, 2024
ICS/OT ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in their industrial and OT products. Eduard KovacsJune 12, 2024
Cybersecurity Funding Xona Raises $18 Million for OT Remote Access Platform OT zero trust user access platform provider Xona has raised $18 million, which brings its total investment to $32 million. Eduard KovacsJune 11, 2024
ICS/OT Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs Cisco Talos researchers have found over a dozen vulnerabilities in AutomationDirect PLCs, including flaws that could be valuable to attackers. Eduard KovacsJune 10, 2024