Filter
22 June 2017
WannaCry on industrial networks: error correctionDuring the period from 12 to 15 May 2017, numerous companies across the globe were attacked by a network cryptoworm called WannaCry. The worm’s victims include various manufacturing companies, oil refineries, city infrastructure objects and electrical distribution network facilities.
19 June 2017
Vulnerable System Update Statistics. General ElectricThis article is devoted to vulnerabilities in General Electric products. The article looks only at known vulnerabilities, a list of which was prepared based using the MITRE CVE database. All the vulnerabilities in question were uncovered in 2012 – 2016.
15 June 2017
Nigerian phishing: industrial companies under attackIn late 2016, the Kaspersky Lab Industrial Control Systems Cyber Emergency Response Team (Kaspersky Lab ICS CERT) reported on phishing attacks that were primarily targeting industrial companies from the metallurgy, electric power, construction, engineering and other sectors.
28 March 2017
Threat Landscape for Industrial Automation Systems in the second half of 2016The Kaspersky Lab Industrial Control Systems Cyber Emergency Response Team (Kaspersky Lab ICS CERT) is starting a series of regular publications about our research devoted to the threat landscape for industrial organizations.
09 December 2016
Vulnerability in Industrial Control software and quality of the patch managementKaspersky Lab ICS-CERT is launching a series of articles devoted to vulnerability analysis across the world. The articles aim to highlight patch management problems in the ICS world. Each article will focus on one popular ICS vendor and known vulnerabilities according to the MITRE Common Vulnerabilities and Exposures (CVE) database.
02 December 2016
Critical infrastructure protection – governance around the worldThis research is intended to find out which approaches to cybersecurity governance on the national level are currently in place around the world (especially in the sphere of protecting critical infrastructure against cyberattacks), and estimate the current maturity of cybersecurity governance in different countries.
Filter
30 March 2018
New vulnerabilities in Allen Bradley MicroLogix 1400 PLCsSerious vulnerabilities have been closed in Allen Bradley MicroLogix 1400 PLC series. Exploitation of these vulnerabilities could lead to unauthorized modification of PLC configuration and cause the devices to enter a denial-of-service condition
29 March 2018
Multiple vulnerabilities identified in the Modicon family of industrial controllersUS CERT has published an advisory on vulnerabilities in the Modicon family of industrial controllers by Schneider Electric.
26 March 2018
Improper Input Validation vulnerability in Siemens industrial devicesA vulnerability that could cause a denial-of-service condition has been identified in Siemens industrial solutions. The vulnerability can only be exploited if the attacker is located in the same Ethernet segment as the targeted device
26 March 2018
Serious vulnerability identified in Beckhoff TwinCAT PLC software solutionVulnerability in kernel drivers of Beckhoff TwinCAT 2 and 3.1 PLC software solutions for PLCs could allow local attackers to escalate privileges on target systems
01 March 2018
Siemens industrial solutions are affected by vulnerabilities in Intel ME, SPS and TXE technologies28 industrial solutions by Siemens are affected by vulnerabilities in Intel ME, SPS and TXE technologies. The vendor has released patches for all of these products and made these patches available on its website
27 February 2018
OMG botnet turns infected devices into proxy serversA new variant of the Mirai botnet can set up proxy servers on infected IoT devices
22 February 2018
3.3% of ICS computers attacked by miners during the past yearKaspersky Lab has recorded an increase in the number of attacks involving cryptocurrency miners on the infrastructure of industrial enterprises, which started in September 2017. Miners can interfere with industrial process control and threaten process stability.
22 February 2018
Vulnerabilities in GE D60 Line Distance Relay devicesCritical vulnerabilities have been identified in General Electric D60 Line Distance Relay devices. The vulnerabilities could allow attackers to execute code on vulnerable systems.
22 February 2018
Critical vulnerability in WAGO PFC200 controllers closedWAGO has closed a critical vulnerability (improper authentication) in its PFC200 Series PLCs.
29 January 2018
Vulnerability in Nari PCS-9611 relaysAn improper input validation vulnerability has been identified in the Nari PCS-9611 protection relay. Although an exploit for the vulnerability exists, the vendor has so far not commented on the problem.
Filter