HackDig : Dig high-quality web security articles for hacker

Industrial Controllers Still Vulnerable to Stuxnet-Style Attacks

Researchers demonstrated recently that hackers could launch a Stuxnet-style attack against Schneider Electric’s Modicon programmable logic controllers (PLCs), but it’s believed that products from other vendors could also be vulnerable to the same type of attack.The notorious Stuxnet malware, which the United States and Israel used to cause damage to Iran’s n
Publish At:2020-03-31 11:08 | Read:124 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Most Security Pros Prefer Enterprise Over Industrial Cybersecurity: Survey

A global survey of 1,000 security professionals commissioned by industrial cybersecurity company Claroty has revealed that over 70% would rather work in IT enterprise cybersecurity than industrial security.The respondents of the survey represented the United States, United Kingdom, Germany, France, and Australia. Globally, over 75% of IT security pros said t
Publish At:2020-03-25 14:45 | Read:201 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Manageme

Public ICS Hacking Tools Make It Easier to Launch Attacks: FireEye

Publicly available hacking tools, many of which have been developed for research and testing purposes, lower the bar for threat actors looking to target industrial control systems (ICS) and operational technology (OT) networks, FireEye warned this week.The cybersecurity firm told SecurityWeek that its Mandiant Intelligence team tracks nearly 100 tools that c
Publish At:2020-03-25 09:30 | Read:155 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Risk Man

How to Address the Surging Need for Secure Remote Access to OT Networks

Strategies for Evaluating Secure Remote Access Solutions for OT/ICS NetworksOver the past decade, the number of employees in the U.S. working from home half-time or more has risen to an estimated five million, according to Global Workplace Analytics. However, those numbers now pale in comparison to today’s reality of businesses everywhere encouraging as many
Publish At:2020-03-24 12:13 | Read:177 | Comments:0 | Tags:INDUSTRY INSIGHTS SCADA / ICS

Several Vulnerabilities Expose Phoenix Contact Industrial 4G Routers to Attacks

Several potentially serious vulnerabilities have been discovered in some of the industrial 4G routers made by Phoenix Contact, a Germany-based provider of industrial automation, connectivity and interface solutions.The security holes were discovered by cybersecurity consultancy SEC Consult and the vendor has released firmware updates that should patch the fl
Publish At:2020-03-12 15:42 | Read:311 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Tens of Vulnerabilities Expose WAGO Controllers, HMI Panels to Attacks

Tens of vulnerabilities discovered by Cisco Talos researchers in WAGO products expose some of the company’s controllers and human-machine interface (HMI) panels to remote attacks.Talos and Germany’s VDE CERT this week published advisories describing roughly 30 vulnerabilities identified in devices made by WAGO, a German company specializing in electrical con
Publish At:2020-03-11 13:45 | Read:271 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

European Electrical Energy Organization Discloses Breach

The European Network of Transmission System Operators for Electricity (ENTSO-E) revealed this week that malicious actors breached its corporate network.ENTSO-E represents 42 electricity transmission system operators (TSOs) from 35 countries in Europe. TSOs are responsible for the transmission of electric power across the main high-voltage networks, and ENTSO
Publish At:2020-03-11 07:41 | Read:232 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Incident

The OT Security Opportunity for CISOs

In my previous column, I talked about the rapidly changing geopolitical landscape and the escalation of cyberattacks on critical infrastructure. Some of you may be wondering: “Why should I care? Russia and other nation-states aren’t focused on me and my networks.”If you’re a CISO at an insurance company or a medical facility or any organization where these n
Publish At:2020-03-03 13:47 | Read:126 | Comments:0 | Tags:INDUSTRY INSIGHTS SCADA / ICS

Massachusetts Electric Utility Hit by Ransomware

The Reading Municipal Light Department (RMLD), an electric utility in Massachusetts, informed customers on Monday that its systems were targeted last week in a ransomware attack.RMLD says it serves over 68,000 residents in the towns of Reading, North Reading, Wilmington and Lynnfield Center.The company says the ransomware attack had no impact on the delivery
Publish At:2020-02-26 09:10 | Read:273 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Virus &a

Vulnerabilities in Moxa Networking Device Expose Industrial Environments to Attacks

Researchers from Cisco’s Talos intelligence and research group have identified a dozen vulnerabilities in a wireless networking device made by Taiwan-based industrial networking, computing and automation solutions provider Moxa.According to advisories published on Monday by both Moxa and Talos, AWK-3131A industrial AP/bridge/client devices are affected by 12
Publish At:2020-02-24 16:05 | Read:282 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Mismanagement of Device Identities Could Cost Businesses Billions: Report

The cost of poorly protected device identities has long been assumed, but not proven, to be large. Specification of the part played by SSH abuse within a breach report is rare despite compromised machine identities being used by attackers to hide their malicious activity, evade security controls and steal a wide range of confidential data.Now risk modeling a
Publish At:2020-02-24 12:19 | Read:141 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Identity & Access IoT Se

Vulnerabilities Allow Hackers to Access Honeywell Fire Alarm Systems

Honeywell has released patches for a couple of potentially serious vulnerabilities affecting a web server used by its Notifier fire alarm systems.Gjoko Krstic, researcher at industrial cybersecurity firm Applied Risk, discovered that the NOTI-FIRE-NET Web Server (NWS-3) is affected by authorization bypass (CVE-2020-6972) and information disclosure vulnerabil
Publish At:2020-02-24 11:20 | Read:235 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Over 400 ICS Vulnerabilities Disclosed in 2019: Report

More than 400 vulnerabilities affecting industrial control systems (ICS) were disclosed in 2019 and over a quarter of them had no patches when their existence was made public, according to a report published on Thursday by industrial cybersecurity firm Dragos.Dragos analyzed 438 ICS vulnerabilities covered in 212 security advisories, roughly the same as in t
Publish At:2020-02-20 17:18 | Read:275 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities

Vulnerable Out of Band Consoles Put Industrial Assets at Risk

Researchers Find Internet-Exposed, Poorly Protected Out of Band Consoles Commonly Used in Maritime and Oil & Gas IndustriesVulnerable, improperly protected Out of Band (OOB) consoles expose ships, drilling rigs, remote shore-based facilities, and even mobile vehicles to attackers, researchers from security firm Pen Test Partners warn.The use of OOB manag
Publish At:2020-02-19 22:20 | Read:270 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS

Operations at U.S. Natural Gas Facilities Disrupted by Ransomware Attack

A ransomware infection at a natural gas compression facility in the United States resulted in a two-day operational shutdown of an entire pipeline asset, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) revealed on Tuesday.The targeted organization has not been named and it’s unclear exactly when the incident occu
Publish At:2020-02-19 10:58 | Read:252 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Incident


Share high-quality web security related articles with you:)


Tag Cloud