Home / News

News

IoT Security in the ‘Smart Manufacturing’ world: a new study by ENISA

11 December 2018

ENISA has released a new study: “Good Practices for Security of Internet of Things in the context of Smart Manufacturing. Kaspersky Lab ICS CERT experts contributed to the study.
Critical vulnerability in Modicon M221 PLC

23 November 2018

A critical vulnerability in Modicon M221 PLC could allow attackers to intercept traffic by remotely changing IPv4 parameters
Web vulnerabilities in Siemens SIMATIC operator panels

16 November 2018

The most serious of the vulnerabilities could allow arbitrary files to be downloaded from the device
Vulnerabilities in Siemens industrial products

16 November 2018

The most dangerous of the vulnerabilities affect the SIMATIC S7-400 CPU family and the SIMATIC IT Production Suite software package. The vulnerabilities have been fixed for most of the affected products
Schneider Electric has fixed a vulnerability in SESU software

08 November 2018

The vulnerability affects the Schneider Electric Software Update (SESU) tool, which is used to notify users when updated Schneider Electric software is available
Critical vulnerabilities in CirCarLife electric vehicle chargers

08 November 2018

Successful exploitation of these vulnerabilities could allow a remote attacker to retrieve credentials to bypass authentication, and to access critical information
Critical vulnerabilities in AVEVA industrial software

07 November 2018

The vulnerabilities affect InduSoft Web Studio and InTouch Edge HMI and could allow remote execution of arbitrary code
Multiple vulnerabilities in Advantech WebAccess

29 October 2018

Vulnerabilities identified in Advantech WebAccess include buffer overflow, path traversal, improper privilege management, etc.
Phishing attack targeting Italian naval and defense industry

22 October 2018

The attackers attempted to infect computers with MartyMcFly remote access Trojan using phishing emails with malicious attachments
New GreyEnergy malware attacks industrial networks

19 October 2018

Experts point to the similarities between the new malware and BlackEnergy, and a possible connection of the attacks with the TeleBots criminal group