User Enumeration in Moxa ThingsPro IIoT Gateway and Device Management Software.

Main events of the six-month period, vulnerabilities identified in 2018, relevant threats, and statistics from ICS computers protected by Kaspersky products.

User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device Management Software.

ARC Advisory Group and Kaspersky have presented a survey on the state of industrial cybersecurity in 2019

Broken access control in Moxa ThingsPro IIoT Gateway and Device Management Software.

Password Management Issue in Moxa ThingsPro IIoT Gateway and Device Management Software.

Successful exploitation of the vulnerabilities could allow an attacker to execute arbitrary code, crash the device or view protected data

Sensitive Information Stored in Clear Text in Moxa ThingsPro IIoT Gateway and Device Management Software.

This article continues the discussion of research on popular OEM technologies that are implemented in the products of a large number of vendors. Vulnerabilities in such technologies are highly...

Hidden Token Access in Moxa ThingsPro IIoT Gateway and Device Management Software.

This article continues the discussion of research on popular OEM technologies that are implemented in the products of a large number of vendors. Vulnerabilities in such technologies are highly...

An XXE injection vulnerability leads to path traversal inside the Proficy server. An attacker may be able to initiate an OPC UA session and retrieve an arbitrary file from the target system.

Victims of the latest attacks include Pensacola and New Orleans city administrations in the US and a hospital in Benešov (Czech Republic)

LibVNCServer before a 0.9.12 release contains a heap use-after-free vulnerability in the server code of the file transfer extension, which can result in remote code execution.

Nine vulnerabilities have been identified in WAGO PFC200 and PFC100 PLCs. They could lead to arbitrary code execution or cause denial of service

The infection affected the facility’s corporate network and industrial control systems that control cargo transfer. The primary operations of the facility were shut down for over 30 hours

The finals of the Kaspersky Industrial CTF, an industrial cybersecurity contest, were just held in Singapore. The winner is the LC/BC team from Russia

An attacker with local access to the project file could cause a Denial-of-Service condition on the affected product while the project file is loaded. Successful exploitation requires access to the...

An attacker with network access to affected installations, which are configured without “Encrypted Communication”, can execute arbitrary code. The security vulnerability could be exploited by an...

Multiple vulnerabilities could lead to arbitrary code and command execution on a target system and a denial-of-service condition

Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs.

Hasplm cookie does not have a HTTPOnly attribute.

If successfully exploited, the vulnerabilities could allow an attacker to execute code remotely and gain full system access

The vulnerability could be used by an authenticated, remote attacker to execute arbitrary code on devices running vulnerable software

The vulnerabilities allow attackers to gain unauthorized access to device configuration, decrypt passwords, cause denial of service, or bypass authentication

A ransomware attack has caused ASCO plants in Belgium, Germany, Canada and the US to suspend their operations. 1000 employees have been placed on a one-week leave

In this article, we publish the results of our study of the Fibaro Home Center smart home. We identified vulnerabilities in Fibaro Home Center 2 and Fibaro Home Center Lite version 4.540, as well...

The vulnerability is due to an improper check for unusual or exceptional conditions and could lead to denial of service

In addition to Schneider Electric, security issues affect products from AVEVA Vijeo Citect and Citect SCADA

The vulnerability could allow an attacker to force the software to crash or to execute arbitrary code