Home / News / 3

News

Critical vulnerabilities identified by Kaspersky Lab have been corrected in Siemens SIMATIC WinCC and SIMATIC PCS 7

20 May 2019

Multiple vulnerabilities could lead to arbitrary code and command execution on a target system and a denial-of-service condition
Metallurgical giant Norsk Hydro attacked by encrypting malware

22 March 2019

On March 19 2019 Norsk Hydro, one of the world’s largest aluminum producers revealed that ransomware had been used in an attack against them.
Vulnerabilities in Schneider Electric industrial solutions

15 January 2019

Critical and severe vulnerabilities have been identified in GP-Pro EX programming environment, Zelio Soft software and IIoT Monitor platform
Critical vulnerabilities in Siemens SINUMERIK controllers

14 December 2018

Exploitation of vulnerabilities in Siemens SINUMERIK controllers cold allow remote code execution, privilege escalation and device denial-of-service conditions
IoT Security in the ‘Smart Manufacturing’ world: a new study by ENISA

11 December 2018

ENISA has released a new study: “Good Practices for Security of Internet of Things in the context of Smart Manufacturing. Kaspersky Lab ICS CERT experts contributed to the study.
Critical vulnerability in Modicon M221 PLC

23 November 2018

A critical vulnerability in Modicon M221 PLC could allow attackers to intercept traffic by remotely changing IPv4 parameters
Web vulnerabilities in Siemens SIMATIC operator panels

16 November 2018

The most serious of the vulnerabilities could allow arbitrary files to be downloaded from the device
Vulnerabilities in Siemens industrial products

16 November 2018

The most dangerous of the vulnerabilities affect the SIMATIC S7-400 CPU family and the SIMATIC IT Production Suite software package. The vulnerabilities have been fixed for most of the affected products
Schneider Electric has fixed a vulnerability in SESU software

08 November 2018

The vulnerability affects the Schneider Electric Software Update (SESU) tool, which is used to notify users when updated Schneider Electric software is available
Critical vulnerabilities in CirCarLife electric vehicle chargers

08 November 2018

Successful exploitation of these vulnerabilities could allow a remote attacker to retrieve credentials to bypass authentication, and to access critical information