Irish Water Utility Compromise
An attack targeting Unitronics programmable logic controllers (PLCs) left 160 households in
OT SECURITY NEWS
Pennsylvania Water Utility Compromise
Booster stations that regulates and monitors water pressure for two towns in
Permanent Vulnerabilities
Vendor failure and abandoned firmware are becoming more prevalent, leaving permanent vulnerabilities
KNX protocol vulnerability could lock out Building Automation Systems
CISA published details of a KNX protocol vulnerability that could be used
CODESYS Vulnerabilities affecting wide range of products
Microsoft Threat Intelligence detected a number of vulnerabilities in Codesys SDK which
Dead Man’s PLC attack
Researchers have described a novel “dead man’s PLC attack” where a compromise
Schneider EcoStruxure, Modicon vulnerabilities
CISA advised that Schneider has released patches for CVE-2022-45788 affecting various models of EcoStruxure
Solar Farms under attack
Mirai botnets are being used to actively exploit critical vulnerabilities in SolarView
ScadaFlex II, JTEKT, Korenix, MicroSCADA, mySCADA and FactoryTalk Advisories
CISA has published a number of low complexity, high impact advisories for Industrial
Authentication bypass in Wago PLC web management console
Wago has released patches for a number of vulnerabilities affecting several products.