SCADA Archives

ICS/OT

Cybersecurity M&A Roundup for April 1-15, 2022

Twenty-one cybersecurity-related M&A deals have been announced in the first half of April 2022.

Eduard KovacsApril 19, 2022

Application Security

Critical Code Execution Flaw Haunts VMware Cloud Director

Cloud computing and virtualization technology firm VMWare on Thursday rolled out patches for an extremely critical security flaw in the VMWare Cloud Director product,...

Ryan NaraineApril 14, 2022

Cybercrime

Russia-Linked Pipedream/Incontroller ICS Malware Designed to Target Energy Facilities

Schneider Electric says no evidence that Incontroller/Pipedream malware exploits vulnerabilities

Eduard KovacsApril 14, 2022

Application Security

VMware Confirms Workspace One Exploits in the Wild

Less than a week after patching critical security defects affecting multiple enterprise-facing products, VMware is warning that one of the flaws is being exploited...

Ryan NaraineApril 13, 2022

ICS/OT

U.S. Warns Sophisticated ICS/SCADA Malware Can Damage Critical Infrastructure

Ryan NaraineApril 13, 2022

ICS/OT

ICS Patch Tuesday: Siemens, Schneider Fix Several Critical Vulnerabilities

Siemens and Schneider Electric have addressed more than two dozen vulnerabilities in their April 2022 Patch Tuesday security advisories, including flaws that have a...

Eduard KovacsApril 13, 2022

Cyberwarfare

Ukraine Says Potent Russian Hack Against Power Grid Thwarted

Russian military hackers attempted to knock out power to millions of Ukrainians last week in a long-planned attack but were foiled, Ukrainian government officials...

Associated PressApril 12, 2022

Cybersecurity Funding

US Charges Russian Hackers Over Infamous Triton, Havex Cyberattacks on Energy Sector

Mike LennonMarch 25, 2022

ICS/OT

Over 100 Building Controllers in Russia Vulnerable to Remote Hacker Attacks

A researcher has identified critical vulnerabilities that can allegedly be exploited to remotely hack a building controller predominantly used by organizations in Russia.

Eduard KovacsMarch 24, 2022

ICS/OT

Many Critical Flaws Patched in Delta Electronics Energy Management System

At least 30 vulnerabilities were found in the past year in the DIAEnergie industrial energy management system made by Delta Electronics. The company says...

Eduard KovacsMarch 24, 2022

ICS/OT

High-Severity Vulnerabilities Patched in Omron PLC Programming Software

Several high-severity vulnerabilities that can be exploited for remote code execution were patched recently in the CX-Programmer software of Japanese electronics giant Omron.

Eduard KovacsMarch 11, 2022

ICS/OT

CISA Informs Organizations of Flaws in Unsupported Industrial Telecontrol Devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) last week released an advisory to inform organizations about potentially serious vulnerabilities affecting ipDIO telecontrol communication...

Eduard KovacsMarch 7, 2022

ICS/OT

Slight Increase in Attacks on ICS Computers in 2021: Report

Kaspersky said it saw only a small increase in the percentage of industrial control system (ICS) computers targeted in 2021 compared to the previous...

Eduard KovacsMarch 4, 2022

ICS/OT

GE SCADA Product Vulnerabilities Show Importance of Secure Configurations

GE Digital has released patches and mitigations for two high-severity vulnerabilities affecting its Proficy CIMPLICITY HMI/SCADA software, which is used by plants around the...

Eduard KovacsFebruary 25, 2022

Cyberwarfare

Russia, Ukraine and the Danger of a Global Cyberwar

Kevin TownsendFebruary 24, 2022

ICS/OT

ICS Patch Tuesday: Siemens, Schneider Electric Address Nearly 50 Vulnerabilities

Industrial giants Siemens and Schneider Electric released a total of 15 advisories on Tuesday to address nearly 50 vulnerabilities discovered in their products.Siemens

Eduard KovacsFebruary 9, 2022

ICS/OT

US Says National Water Supply ‘Absolutely’ Vulnerable to Hackers

AFPJanuary 27, 2022

ICS/OT

New Open Source Tool Helps Identify EtherNet/IP Stacks for ICS Research, Analysis

Industrial cybersecurity firm Claroty on Wednesday announced a new open source tool designed for identifying EtherNet/IP stacks.According to the company, the new “EtherNet/IP &...

Eduard KovacsJanuary 26, 2022

Cybercrime

Thousands of Industrial Firms Targeted in Attacks Leveraging Short-Lived Malware

Thousands of industrial organizations worldwide have been hit in campaigns that leverage short-lived malware to harvest corporate credentials that are then sold by threat...

Eduard KovacsJanuary 19, 2022