Major Vulnerabilities Found in Human Machine Interface
Executive Summary Several vulnerabilities have been identified with a product from mySCADA called myPRO. myPro is a human-machine interface (HMI) used to control and track industrial systems across ...
New Framework to Address AI Implementation in Critical Infrastructure
Executive Summary The Roles and Responsibilities Framework for Artificial Intelligence in Critical Infrastructure was released on November 14th by the U.S. Department of Homeland Security. The ...
Cybersecurity Incident Costing Energy Service Provider Tens of Millions
Executive Summary One of the world’s largest oil service providers, Halliburton, is still recovering from a cybersecurity incident which occurred on August 24th. [1] Although the full extent of ...
New Functionality Revealed for Palo Alto Networks OT Cybersecurity Solutions
Executive Summary During SecurityWeek’s ICS Cybersecurity Conference in October Palo Alto Networks showcased many new features being added to their operational technology (OT) solutions allowing ...
Critical Vulnerabilities Found in Industrial Routers
Executive Summary On October 15, 2024, CERT@VDE released an advisory for a vulnerable industrial router produced by MB Connect Line. [3] The mbNET.mini router, produced by MB Connect Line, is a VPN ...
Vulnerabilities Discovered on Elvaco M-Bus Metering Gateway CMe3100
Executive Summary Four vulnerabilities have been identified with Elvaco’s M-Bus Metering Gateway CMe3100. The vulnerabilities found could allow attackers to take control of admin accounts, execute ...
Schneider Electric Data Center Expert Advisory
Executive Summary The Cybersecurity and Infrastructure Security Agency (CISA) released an advisory for the Data Center Expert on October 15th. The Data Center Expert is an industrial control system ...
FrostyGoop the New Addition to ICS Specific Malware
Executive Summary The Stuxnet attack in 2010 is the first known instance of specialized industrial control system (ICS) malware being used to cripple industry within a major nation state. Fourteen ...
Critical Vulnerabilities Uncovered in Automatic Tank Gauges
Executive Summary Bitsight TRACE, a security and research intelligence team, recently uncovered critical vulnerabilities found within several automatic tank gauging systems (ATGs) across multiple ...
CyberAv3ngers Compromise Unitronics PLCs
Executive Summary The water and wastewater sector plays a crucial role in health and public safety, as it is responsible for delivering clean drinking water and properly treating wastewater for ...