ICS

Malware & Threats

Issued by: Security Week

Simulation Shows Threat of Ransomware Attacks on ICS

Researchers at the Georgia Institute of Technology have demonstrated the potential impact of ransomware on industrial control systems (ICS) by simulating an attack aimed at a water treatment plant. David Formby, a Ph.D. student in the Georgia Tech School of Electrical and Computer Engineering, and his faculty advisor, Raheem Beyah, identified several commonly used programmable…

Network Security

Issued by: Security Week

ADC Attacks Can Cause Damage in Industrial Environments

Malicious actors could cause physical damage by exploiting flaws in how analog-to-digital converters (ADCs) are used in industrial environments, researchers warned. ADCs are electronic devices that convert analog signals, such as voltage or amperage, into digital signals. In industrial environments, ADCs can be used to produce a digital number from an analog signal coming from…

Network Security

Issued by: Security Week

Flaw in Schneider Industrial Firewalls Allows Remote Code Execution

On Wednesday, at SecurityWeek’s 2016 ICS Cyber Security Conference, in a presentation meant to demonstrate that attackers could easily bypass defenses if proper ICS protection technologies are not in place, researchers at industrial security firm CyberX disclosed the existence of several important flaws. One of them affects Schneider Electric’s ConneXium TCSEFEC family of industrial ethernet…

Network Security

Issued by: Security Week

ICS Networks at Risk Due to Flaw in Schneider PLC Simulator

On Tuesday, at SecurityWeek’s 2016 ICS Cyber Security Conference, Indegy CTO Mille Gandelsman disclosed a vulnerability found by the company in Unity Pro, a Windows-based programming, debugging and operating software for Schneider’s programmable logic controllers (PLCs). Unity Pro, typically deployed on engineering workstations, includes a PLC simulator component that allows users to test applications without…