ICS/OT – TFun dot org

US Agencies Told to Assess IoT/OT Security Risks to Boost Critical Infrastructure Protection

05/12/2022RedOne

The US Government Accountability Office (GAO) has urged several federal agencies to conduct cybersecurity-related assessments in an effort to improve the protection of certain critical infrastructure sectors. read more

Mitsubishi Electric PLCs Exposed to Attacks by Engineering Software Flaws

02/12/2022RedOne

Researchers at industrial cybersecurity firm Nozomi Networks have discovered three vulnerabilities in Mitsubishi Electric’s GX Works3 engineering workstation software that could be exploited to hack safety systems. read more

Delta Electronics Patches Serious Flaws in Industrial Networking Devices

30/11/2022RedOne

Taiwan-based Delta Electronics has patched potentially serious vulnerabilities in two of its industrial networking products. The flaws were identified by researchers at CyberDanube, a new industrial cybersecurity company based in Austria, in Delta’s DX-2100-L1-CN 3G cloud router and the DVW-W02W2-E2 industrial wireless access point. read more

OT:Icefall Continues With Vulnerabilities in Festo, Codesys Products

30/11/2022RedOne

Forescout Technologies has disclosed the details of three new vulnerabilities identified by its researchers in operational technology (OT) products from Festo and Codesys. read more

Microsoft Warns of Boa Web Server Risks After Hackers Target It in Power Grid Attacks

23/11/2022RedOne

Microsoft is warning organizations about the risks associated with the discontinued Boa web server after vulnerabilities affecting the software were apparently exploited by threat actors in an operation aimed at the energy sector. read more

CISA Updates Infrastructure Resilience Planning Framework

23/11/2022RedOne

The US Cybersecurity and Infrastructure Security Agency (CISA) this week announced the addition of new tools and guidance to the Infrastructure Resilience Planning Framework (IRPF). read more

US Offshore Oil and Gas Infrastructure at Significant Risk of Cyberattacks

22/11/2022RedOne

The offshore oil and gas infrastructure faces cybersecurity risks that the Department of Interior should immediately address, the US Government Accountability Office (GAO) notes in a new report. read more

Omron PLC Vulnerability Exploited by Sophisticated ICS Malware

18/11/2022RedOne

A critical vulnerability has not received the attention it deserves read more

Networking Tech Vulnerability Could Be Used to Hack Spacecraft: Researchers

16/11/2022RedOne

A team of researchers from the University of Michigan, University of Pennsylvania and NASA have identified a potentially serious vulnerability in networking technology used in spacecraft, aircraft, and industrial control systems. read more

Swimlane Launches Security Automation Ecosystem for OT

15/11/2022RedOne

Security orchestration, automation and response (SOAR) provider Swimlane on Monday announced the launch of a security automation solution ecosystem for operational technology (OT) environments. read more