Filter
26 September 2024
Threat landscape for industrial automation systems. Q2 2024In the second quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 0.9 pp from the previous quarter to 23.5%. Compared to the second quarter of 2023, the percentage decreased by 3.3 pp.
13 June 2024
Cinterion EHS5 3G UMTS/HSPA Module ResearchIn the course of the modem security analysis, we found seven locally exploited vulnerabilities and one remotely exploited vulnerability. The combination of these vulnerabilities could allow an attacker to completely get control over the modem.
10 June 2024
APT and financial attacks on industrial organizations in Q1 2024This summary provides an overview of the reports of APT and financial attacks on industrial enterprises, as well as the related activities of groups that have been observed attacking industrial organizations and critical infrastructure facilities.
03 June 2024
Q1 2024 – a brief overview of the main incidents in industrial cybersecurityA total of 30 incidents were confirmed by victims. 37% of victims reported denial of operations or product shipment caused by the incident. Almost half of all incidents resulted in disruption of the victims’ public digital services.
27 May 2024
Threat landscape for industrial automation systems. Q1 2024In the first quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 0.3 pp from the previous quarter to 21.4%. Compared to the first quarter of 2023, the percentage decreased by 1.3 pp.
27 May 2024
Threat landscape for industrial automation systems. Regions, Q1 2024The percentage of ICS computers on which malicious objects were blocked during the quarter varied regionally from 34.2% in Africa to 11.5% in Northern Europe. Africa and South-East Asia saw their percentages increase from the previous quarter.
11 April 2024
H2 2023 – a brief overview of main incidents in industrial cybersecurityIn this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.
02 April 2024
APT and financial attacks on industrial organizations in H2 2023An overview of reports of APT and financial attacks on industrial enterprises, as well as related activities of groups that have been observed attacking industrial organizations and critical infrastructure facilities
19 March 2024
Threat landscape for industrial automation systems. Statistics for H2 2023The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.
07 February 2024
Cybersecurity in the automotive industry: Ensuring compliance with UNECE regulationsWhat UN Regulations 155 and 156 require from vehicle manufacturers in reality, and how to ensure compliance with requirements and prepare for certification if necessary
Filter
18 November 2020
Municipal services at Canadian City of Saint John down due to cyberattackAttack by Ryuk ransomware disrupts nearly all municipal services in Canadian city of Saint John
28 May 2020
Multiple vulnerabilities in EcoStruxure Operator Terminal ExpertVulnerabilities that can lead to unsanctioned account access or remote code execution.
28 May 2020
Dangerous vulnerabilities in Emerson OpenEnterpriseKaspersky ICS CERT has discovered vulnerabilities that may allow threat actors to modify configuration files, execute arbitrary code remotely or access user passwords.
20 May 2020
Cyber incidents in industrial enterprises during the first half of May: Stadler, Elexon, BlueScopeVictims included a railway stock manufacturer, an electric utility company and a steel producer. One incident brought operations to a halt
30 April 2020
Multiple vulnerabilities in ABB 800xA DCSThe vulnerabilities could allow attackers to remotely compromise hosts, cause denial-of-service conditions or elevate their privileges
29 April 2020
Targeted attacks on Israeli water supply and wastewater treatment facilitiesIsraeli authorities have warned of possible attacks on SCADA systems of wastewater treatment, water pumping and sewerage facilities
24 April 2020
Malicious campaigns against Azerbaijan’s government and industrial organizationsThe attackers use PoetRAT, a new RAT Trojan distributed via Microsoft Word documents
17 April 2020
Dozens of Siemens industrial devices are affected by DoS vulnerabilitiesSiemens industrial solutions are affected by SegmentSmack and FragmentSmack vulnerabilities, which could lead to device denial of service
17 April 2020
New ransomware attacks on industrial enterprisesIn new ransomware attacks, victims face the choice between paying the ransom and seeing their sensitive data published by the attackers
13 April 2020
Multiple vulnerabilities in Advantech WebAccess/NMSIf exploited, the vulnerabilities could lead to arbitrary code execution, file manipulations, denial of service and the creation of an admin account
Filter
To drive the discussion around the future of OT cybersecurity and equip industry practitioners with the relevant knowledge and best practices, Kaspersky Lab invites industrial cybersecurity experts to submit their researches and reports to its 6th annual conference on industrial cybersecurity by June 1
The Massachusetts Institute of Technology (MIT), in collaboration with Kaspersky Lab, hosted its second annual “Think Security” seminar devoted to protecting industrial automation systems from cyberattacks. The seminar featured an industrial Capture the Flag (CTF) contest
Kaspersky Lab ICS CERT experts have held the first tech talk on industrial cyber security at UC Berkeley.
The finals of Kaspersky Industrial CTF 2017, an industrial cybersecurity contest, were held in Shanghai. This was the third CTF (Capture the Flag) tournament organized by Kaspersky Lab and the first to have the international status
Kaspersky Lab has released the results of Kaspersky Industrial CTF 2017 qualifications, which were held online on October 6-8, 2017. This year’s tournament is truly international, with 696 teams from different countries participating in qualifications. The top three teams were, respectively, CyKor (Korea), Eat, Sleep, Pwn, Repeat (Germany) and Tokyo Westerns (Japan).
Kaspersky Lab has held the Industrial Cybersecurity: Safeguarding Technological Progress conference in Saint Petersburg. The conference was devoted to the most pressing issues associated with protecting modern industrial systems from cyberthreats. Its 300 guests and speakers represented more than 170 organizations from over 15 countries across the globe.