Siemens industrial switches vulnerable to DROWN decryption bug
Siemens is working on a patch to address multiple industrial switches affected by the recently published DROWN vulnerability.
Siemens is working on a patch to address multiple industrial switches affected by the recently published DROWN vulnerability.
Siemens released critical security patches for the firmware in its Ruggedcom WIN products which are used as broadband wireless base stations in industrial environments.
Lucian Constantin | 06 Feb | Read more
Industrial control systems have been at the center of some scary security stories recently, but investigating malware infections in such environments is not easy because analysts often having a hard time telling suspicious and good files apart.
Lucian Constantin | 03 Dec | Read more
Siemens released security updates for several of its SCADA (supervisory control and data acquisition) products for industrial environments, in order to fix critical vulnerabilities that may have been exploited in recent attacks.
Lucian Constantin | 28 Nov | Read more
Since 2011 a group of attackers has been targeting companies that operate industrial control systems with a backdoor program called BlackEnergy.
Lucian Constantin | 30 Oct | Read more
A firmware study that found dozens of security problems affecting more than 120 products is a reminder to businesses to segregate and control access to networked office gear, experts say.
Antone Gonsalves | 13 Aug | Read more
The first large-scale analysis of a fundamental type of software known as firmware has revealed poor security practices that could present opportunities for hackers probing the "Internet of Things."
Jeremy Kirk | 12 Aug | Read more
Siemens released a security update to address the Heartbleed vulnerability in SIMATIC WinCC Open Architecture, a supervisory control and data acquisition (SCADA) system that's used in a large number of industries to operate processes, machines and production flows.
Lucian Constantin | 30 Apr | Read more
A survey of central government staff has revealed that most (74 percent) believe they would be more productive if the security controls on the devices that they use were less restrictive.
Anh Nguyen | 22 Feb | Read more
The National Security Agency (NSA) would happily carry out industrial espionage operations in pursuit of US economic interests, Edward Snowden has alleged in a German TV interview.
John E Dunn | 27 Jan | Read more
The Stuxnet worm was at work sabotaging a uranium plant in Iran a year earlier than previously thought and before a U.S. covert program to disrupt the facility was officially authorized by former President George W. Bush, according to a report on a previously unknown version of the worm.
Tim Greene | 26 Feb | Read more
Security researchers are warning businesses and consumers to immediately disable Universal Plug and Play (UPnP) functions on thousands of networked device products after revealing common flaws that can be easily exploited by a remote attacker.
Malta-based security start-up firm ReVuln claims to be sitting on a stockpile of vulnerabilities in industrial control software, but prefers to sell the information to governments and other paying customers instead of disclosing it to the affected software vendors.
Lucian Constantin | 21 Nov | Read more
Software made by Siemens and targeted by the Stuxnet malware is still full of other dangerous vulnerabilities, according to Russian researchers whose presentation at the Defcon security conference earlier this year was cancelled following a request from the company.
Jeremy Kirk | 08 Nov | Read more
An Italian security researcher recently disclosed details about several zero-day vulnerabilities in supervisory control and data acquisition (SCADA) systems from several vendors.
Jaiukumar Vijayan | 10 Oct | Read more