РУ
Kaspersky Lab ICS CERT

Industrial Systems Emergency Response Team is a special Kaspersky Lab project that will offer the wide range of information services, starting from the intelligence on the latest threats and security incidents with mitigation strategies and all the way up to incident response and investigation consultancy and services. In addition to the latest intelligence about threats and vulnerabilities, Kaspersky Lab’s Industrial CERT will share expertise on compliance. Being a non-commercial project, ICS CERT will share information and expertise to its members free of charge.

Services

Alerts

Reports

Contacts

Alerts

Multiple Vulnerabilities Found in Popular Document Management System

12 February 2018

Several more vulnerabilities found and closed in popular license manager

03 October 2017

Infected CCleaner in ICS around the world

25 September 2017

Multiple vulnerabilities found in popular license manager

28 July 2017

More than 50% of organizations attacked by ExPetr (Petya) cryptolocker are industrial companies

29 June 2017

 More Alerts

Reports

Threats posed by using RATs in ICS

20 September 2018

Threat landscape for industrial automation systems: H1 2018

06 September 2018

Attacks on industrial enterprises using RMS and TeamViewer

01 August 2018

The State of Industrial Cybersecurity 2018: findings of joint survey by Kaspersky Lab and PAC

28 June 2018

OPC UA security analysis

10 May 2018

 More Reports

News

IoT Security in the ‘Smart Manufacturing’ world: a new study by ENISA

11 December 2018

Critical vulnerability in Modicon M221 PLC

23 November 2018

Web vulnerabilities in Siemens SIMATIC operator panels

16 November 2018

Vulnerabilities in Siemens industrial products

16 November 2018

Schneider Electric has fixed a vulnerability in SESU software

08 November 2018

Critical vulnerabilities in CirCarLife electric vehicle chargers

08 November 2018

Critical vulnerabilities in AVEVA industrial software

07 November 2018

Multiple vulnerabilities in Advantech WebAccess

29 October 2018

Phishing attack targeting Italian naval and defense industry

22 October 2018

New GreyEnergy malware attacks industrial networks

19 October 2018

 More News

Events

Kaspersky Industrial CTF 2018 Qualifications Results

29 November 2018

Kaspersky Lab ICS CERT Hands-on: IoT vulnerability research and exploitation training

27 November 2018

 More Events

Reports

Threats posed by using RATs in ICS

20 September 2018

Threat landscape for industrial automation systems: H1 2018

06 September 2018

Attacks on industrial enterprises using RMS and TeamViewer

01 August 2018

The State of Industrial Cybersecurity 2018: findings of joint survey by Kaspersky Lab and PAC

28 June 2018

OPC UA security analysis

10 May 2018

Energetic Bear / Crouching Yeti: attacks on servers

23 April 2018

 More Reports

Advisories

KLCERT-18-025: General Electric Proficy GDS XML eXternal Entity (XXE)

07 December 2018

KLCERT-18-024: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: Remote Code Execution

18 October 2018

KLCERT-18-023: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: Hidden Token Access

18 October 2018

KLCERT-18-022: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: Sensitive Information Stored in Clear Text

18 October 2018

KLCERT-18-021: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: Password Management Issue

18 October 2018

KLCERT-18-020: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: Broken Access Control

18 October 2018

KLCERT-18-019: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: User Privilege Escalation

18 October 2018

KLCERT-18-018: Moxa ThingsPro IIoT Gateway and Device Management Software Solutions: User Enumeration

18 October 2018

KLCERT-18-017: DeltaV Remote Code Execution

02 October 2018

KLCERT-18-016: Eltex ESR-200 Router Default Password Usage

17 August 2018

KLCERT-18-015: Eltex ESR-200 Router Unsecure sudo Configuration

17 August 2018

KLCERT-18-014: Eltex ESR-200 Router Build-in user with highest privileges

17 August 2018

 More Advisories
Kaspersky Lab ICS CERT Trainings: IoT vulnerability research and exploitation
April 6-8, 2019, Singapore

Hands-on training to improve your skills in smart-device vulnerability research from one of the best vulnerability researchers
Kaspersky SECURITY ANALYST SUMMIT
Singapore – April 8-11, 2019

Areas of interest include critical infrastructure protection (SCADA/ICS), internet of things, discovery and responsible disclosure of vulnerabilities.

Call for papers

The deadline for submissions is December 10

Percentage of industrial computers attacked, November 2018

Top countries by percentage of industrial computers attacked, November 2018

Algeria Morocco Egypt Vietnam Indonesia Peru China Mexico Turkey Iran, Islamic Republic of Ukraine India United Arab Emirates Malaysia Taiwan

Threat sources, November 2018

Internet Removable
devices Mail Network
folders
% of attacked users

Malware platforms, November 2018

Visual Basic Script JavaScript .NET Framework PDF AutoCAD BAT RTF NSIS Microsoft Word HTML
% of attacked users

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.