Update ARC Informatique PcVue software to v11.2.06100 / v12.0.23 / v15.1.2 or newer.

The Property Server is part of the Web & Mobile extensions of PcVue. If your system does not requires the use of the Web & Mobile features, you should make sure not to install them. In all cases, Web & Mobile extensions should only be installed on the PcVue Web back end server.

• Set up the border firewall (or a similar network traffic control solution) to allow only authorized parties to send traffic to port 8090/TCP of the system.
• Use virtual private networks (VPN) to secure remote access to the industrial network. A VPN encrypts network traffic between VPN clients and the VPN server, as well as providing secure authorized access to local resources on the company’s internal network. Traffic encryption protects against traffic eavesdropping attacks, including man-in-the-middle (MITM) and other types of traffic analysis attacks.
• Compartmentalize your network: implement network segmentation and strict access control for each segment to provide more comprehensive and effective protection against a wide range of threats. Proper network segmentation prevents attackers from reaching critical assets in the event of a network breach.
• Implement a network intrusion detection system (NIDS). A comprehensive intrusion detection system is capable of detecting unusual network connections and abnormal traffic sent to the device, providing timely information about various suspicious activities and sufficiently reducing the attacker’s chances of successful exploitation.