Filter
27 May 2024
Threat landscape for industrial automation systems. Q1 2024In the first quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 0.3 pp from the previous quarter to 21.4%. Compared to the first quarter of 2023, the percentage decreased by 1.3 pp.
27 May 2024
Threat landscape for industrial automation systems. Regions, Q1 2024The percentage of ICS computers on which malicious objects were blocked during the quarter varied regionally from 34.2% in Africa to 11.5% in Northern Europe. Africa and South-East Asia saw their percentages increase from the previous quarter.
11 April 2024
H2 2023 – a brief overview of main incidents in industrial cybersecurityIn this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.
02 April 2024
APT and financial attacks on industrial organizations in H2 2023An overview of reports of APT and financial attacks on industrial enterprises, as well as related activities of groups that have been observed attacking industrial organizations and critical infrastructure facilities
19 March 2024
Threat landscape for industrial automation systems. Statistics for H2 2023The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.
07 February 2024
Cybersecurity in the automotive industry: Ensuring compliance with UNECE regulationsWhat UN Regulations 155 and 156 require from vehicle manufacturers in reality, and how to ensure compliance with requirements and prepare for certification if necessary
31 January 2024
ICS and OT threat predictions for 2024Most of the described trends have been observed before. However, some of them have reached a critical mass of creeping changes, which could lead to a qualitative shift in the threat landscape
18 October 2023
Updated MATA attacks industrial companies in Eastern EuropeKaspersky experts discovered several detections of malware from the MATA cluster, previously attributed to the Lazarus group, compromising defense contractor companies in Eastern Europe.
05 October 2023
H1 2023 – a brief overview of main incidents in industrial cybersecurityIn this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.
25 September 2023
APT and financial attacks on industrial organizations in H1 2023An overview of reports of APT and financial attacks on industrial enterprises, as well as related activities of groups that have been observed attacking industrial organizations and critical infrastructure facilities
Filter
16 July 2019
Dangerous vulnerability in the IGSS systemThe vulnerability could allow an attacker to force the software to crash or to execute arbitrary code
16 July 2019
Multiple vulnerabilities in Schneider Electric Floating License ManagerIn addition to Schneider Electric, security issues affect products from AVEVA Vijeo Citect and Citect SCADA
09 July 2019
New vulnerability in Schneider Electric Modicon PLCsThe vulnerability is due to an improper check for unusual or exceptional conditions and could lead to denial of service
28 June 2019
Multiple vulnerabilities in ABB HMI solutionsThe vulnerabilities affect CP635 and CP651 control panels and PB610 Panel Builder 600
28 June 2019
Critical vulnerability in SICK MSC800 PLCThe vulnerability is caused by the use of hard-coded credentials
28 June 2019
Multiple vulnerabilities in Advantech WebAccess/SCADAThe vulnerabilities could lead to the disclosure of important information, deletion of files and remote code execution
24 June 2019
Vulnerabilities in Phoenix Contact’s Automation Worx Software SuiteSuccessful exploitations of the vulnerabilities could lead to remote execution of arbitrary code
17 June 2019
Critical vulnerabilities in WAGO industrial switchesExploitation of the vulnerabilities could allow a remote compromise of the managed switch, resulting in disruption of communication and root access to the operating system
14 June 2019
Ransomware disrupts production at four ASCO Industries plantsA ransomware attack has caused ASCO plants in Belgium, Germany, Canada and the US to suspend their operations. 1000 employees have been placed on a one-week leave
11 June 2019
Dangerous vulnerabilities identified in Phoenix Contact industrial switches and controllersThe vulnerabilities allow attackers to gain unauthorized access to device configuration, decrypt passwords, cause denial of service, or bypass authentication
Filter