US CERT has published an advisory on vulnerabilities in the Modicon family of industrial controllers by Schneider Electric.

Serious vulnerabilities have been closed in Allen Bradley MicroLogix 1400 PLC series. Exploitation of these vulnerabilities could lead to unauthorized modification of PLC configuration and cause...

Siemens has released a new firmware version for TIM 1531 IRC communication modules to close a critical vulnerability in these modules. If exploited, this vulnerability could lead to unauthorized...

To drive the discussion around the future of OT cybersecurity and equip industry practitioners with the relevant knowledge and best practices, Kaspersky Lab invites industrial cybersecurity...

An Improper Input Validation vulnerability has been identified in Siemens SIMATIC industrial automation products.

Multiple vulnerabilities have been identified in Moxa EDR-810 industrial routers. Their successful exploitation could lead to privilege escalation and denial-of-service conditions

Critical vulnerabilities have been identified in several Rockwell Automation industrial networking devices. The issue is due to Cisco IOS or IOS XE versions with multiple vulnerabilities being...

A hardware vulnerability in SIMATIC S7-400 CPUs could cause denial-of-service conditions of affected PLCs. Exploitation of the vulnerability does not require user interaction or any privileges

The OPC Foundation has published an official response to Kaspersky Lab’s analysis

Critical vulnerabilities have been identified in FL SWITCH series 3xxx, 4xxx and 48xxx industrial Ethernet switches. Updating the firmware of the switches to version 1.34 or higher is recommended...

A serious improper data validation vulnerability has been closed in some models of PACSystems industrial controllers. Exploitation of the vulnerability could cause affected devices to malfunction

Hardcoded credentials have been identified in Yokogawa STARDOM controllers, potentially leading to remote execution of arbitrary code on affected devices

A vulnerability in Panel Builder 800 engineering software installed on ABB Panel 800 HMI devices could enable attackers to plant and execute arbitrary code on affected devices

A vulnerability in Moxa NPort 5210, 5230 and 5232 devices could allow a remote attacker to cause a resource exhaustion condition

Vulnerabilities in HMI solutions InduSoft Web Studio, InTouch Machine Edition and InTouch could allow remote code execution and cause systems to be compromised

The malware used in these attacks installs legitimate remote administration software – TeamViewer or RMS – on the system. This enables the attackers to gain remote control of infected systems.

Buffer overflow vulnerabilities in WECON LeviStudioU could allow remote code execution.

On November 12 – 13 the Third Specialized Conference “IT Security for Industrial Systems” will be held in Frankfurt.

Insecure configuration storage allows attacker take under control device and smart home.

A remote attacker with low privileges can cause denial of service.

A Buffer Overflow exploited through web interface by remote attacker can cause remote code execution.

A Buffer Overflow exploited through web interface by remote attacker cause denial of service.

Usage of SSLv2 and SSLv3 contain cryptographic weaknesses and cause data decryption.

A authenticated attacker can execute arbitrary code using command ejection.

A authenticated attacker with low privileges can extract password hash information for all users.

A study has been published on the ways in which high-wattage smart devices could be used in attacks on the power grid

In this report, Kaspersky Lab Industrial Control Systems Cyber Emergency Response Team (Kaspersky Lab ICS CERT) publishes the findings of its research on the threat landscape for industrial...

Exploitation of vulnerabilities in Emerson AMS Device Manager, an industrial asset control system, could allow arbitrary code execution and malware injection

Multiple vulnerabilities affect the Alpha5 Smart Loader servo system, FRENIC Loader software, and FRENIC-Ace, FRENIC-Mini, FRENIC-Eco, FRENIC-Multi, and FRENIC-MEGA inverters

Vulnerabilities in the web interface of EMG12 Ethernet Modbus Gateway devices could allow unauthorized access to the devices and the ability to change device configuration