PTC License Server Bug Needs Immediate Patch Against Critical Flaw

July 2, 2024 at 02:54PM CISA and PTC reported a critical flaw in an industrial computer-aided design software server (CVE-2024-6071), exposing systems to unauthorized remote access. A patch has been issued for affected Creo Elements/Direct License Servers, urging immediate update. PTC stated no evidence of exploitation in the wild and emphasized no impact on the … Read more

Researchers Warn of Flaws in Widely Used Industrial Gas Analysis Equipment

June 28, 2024 at 04:39AM Multiple security flaws in Emerson Rosemount gas chromatographs, impacting versions 4.1.5 and prior, have been disclosed. Claroty identified command injection, authentication, and authorization vulnerabilities, enabling attackers to execute arbitrary commands and access sensitive information. Emerson has released an updated firmware to address these issues and advises following cybersecurity best practices … Read more

Gas Chromatograph Hacking Could Have Serious Impact: Security Firm

June 27, 2024 at 08:33AM Claroty has disclosed vulnerabilities in Emerson’s gas chromatograph, posing serious impact risks. These devices are remotely controlled and connected to internal networks via proprietary protocol. Vulnerabilities include critical command injection and bypassing authentication, with potential for severe industry disruption. CISA and Emerson have issued advisories, recommending firmware updates and network … Read more

Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector

June 26, 2024 at 06:05AM Recently, Siemens patched high-severity vulnerabilities in Sicam products: A8000, EGS grid sensors, and 8 power automation software, affecting energy sector security. The flaws allow sensitive data theft, command injection, and password exposure, potentially enabling arbitrary code execution and network destabilization. SEC Consult credited for discovery, with a potential real-world attack … Read more

CISA Warns of PoC Exploit for Vulnerability in RAD SecFlow-2 Industrial Switch

June 19, 2024 at 07:21AM CISA issued an advisory regarding a high-severity vulnerability in an old industrial switch made by RAD Data Communications. An exploit targeting the vulnerability was found, posing a risk to industrial systems. The impacted product is used globally, and CISA recommended upgrading to a newer model to mitigate the risk. Based … Read more

How to navigate NIS2 and secure your vulnerabilities

June 7, 2024 at 11:15AM Webinar on managing cyber risk for cyber physical systems (CPS) and critical national infrastructure (CNI). Scheduled for June 10, 2024, it will cover NIS2 regulations’ impact on CPS risk management, the importance of exposure management over vulnerability management, and utilizing Claroty xDome to measure, manage, and reduce risk. Join to … Read more

Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices

May 31, 2024 at 10:30AM Microsoft stresses the critical need to secure internet-exposed operational technology (OT) devices as cyber attacks continue to target such environments. The company warns that OT systems lack adequate security, making them vulnerable to exploitation and attacks. To mitigate these risks, organizations are urged to implement security measures and reduce the … Read more

Severe Vulnerabilities in Cinterion Cellular Modems Pose Risks to Various Industries

May 13, 2024 at 06:22AM Cybersecurity researchers disclosed critical security flaws in Cinterion cellular modems, potential targets for threat actors, risking access to sensitive information and code execution. The flaws, including heap overflow, privilege escalation, and exposure of sensitive information, were presented at OffensiveCon. Recommendations to mitigate threats include disabling non-essential SMS messaging and conducting … Read more

Widely used Telit Cinterion modems open to SMS takeover attacks

May 10, 2024 at 04:09AM Security flaws in widely utilized Telit Cinterion cellular modems present remote code execution risks via SMS. Eight issues, comprising a severe heap overflow problem (CVE-2023-47610), were revealed by Kaspersky’s ICS CERT division. The vulnerabilities could allow attackers to compromise device integrity and cause extensive disruption. Mitigation strategies include disabling SMS … Read more

Honeywell: USB Malware Attacks on Industrial Orgs Becoming More Sophisticated

April 29, 2024 at 09:57AM Honeywell’s sixth annual report warns of an increase in USB-borne malware sophistication targeting industrial systems. Notably, 31% of the malware aims at industrial organizations, and 80% can disrupt operational technology processes. Malware frequency has increased by 33%, and adversaries are shifting towards living-off-the-land strategies. The full 2024 Honeywell USB Threat … Read more