Report

Threat landscape for industrial automation systems. Statistics for H2 2021

The percentage of ICS computers attacked globally was 31.4%. The percentage for different countries was in the range from 54.9% to 8.5%.

Vulnerability in FortiGate VPN servers is exploited in Cring ransomware attacks

Report

Lazarus targets defense industry with ThreatNeedle

Report

Attacks on industrial enterprises using RMS and TeamViewer: new data

VNC vulnerability research

Report an incident

Reports All

Attacks on industrial control systems using ShadowPad

A previously unknown Chinese-speaking threat actor attacking telecommunications, manufacturing, and transport organizations in several Asian countries. The group exploits MS Exchange vulnerability to deploy ShadowPad malware and infiltrates building automation systems of one of the victims.

27 June 2022

ISaPWN – research on the security of ISaGRAF Runtime

This report includes an analysis of the ISaGRAF framework, its architecture, the IXL and SNCP protocols and the description of several vulnerabilities the Kaspersky ICS CERT team had identified.

23 May 2022

Threat landscape for industrial automation systems. Statistics for H2 2021

The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.

03 March 2022

More reports

Advisories All

KLCERT-21-007: Schneider Electric EcoStruxure Control Expert / Process Expert, SCADAPack RemoteConnect for x70. Information leak from project file

20 May 2022

KLCERT-20-061 / KLCERT-20-068: Schneider Electric Modicon M340/M580 Authentication Bypass by Spoofing

20 May 2022

KLCERT-20-038: Bosch AMC2. Missing authentication for critical function

20 January 2022

More advisories

Blog All

Draft of the NIST Guide #800-82 – what has changed
24 May 2022
Vulnerability in ICS: assessing the severity
20 April 2022
Good old buffer overflow
31 March 2021
More blog

Services All

Kaspersky ICS CERT provides unique services in the area of industrial automation system and internet-of-things cybersecurity

Be Aware

Keep up to date on threats and risks relevant to your organization

Get Ready

Empower your workforce with cybersecurity knowledge

Respond

Expert handling of security incidents using our professional services

Transform

Rethink your approach to cybersecurity from the ground up

More services

Events All

Kaspersky ICS CERT experts participate in conferences and conduct training courses, seminars, workshops, and CTF contests
22Dec 2021

TÜV Austria Academy will offer Kaspersky training courses
2Dec 2021

Kaspersky Industrial Cybersecurity Conference 2021
29Oct 2021

Are industrial organizations a target for cybercriminals?
More events

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.