ICS

Paul Rascagneres wrote this blog post with contributions from Patrick DeSantis from Cisco Talos ARES (Advanced Research/Embedded Systems). Executive summary Every day, more industrial control systems (ICS) become vulnerable to cyber attacks. As these massive, critical machines become more interconne…

Over the last few years, cybersecurity without doubt, has emerged as the top of mind concern in Industrial Control Systems (ICS). But, it is the breadth and depth of ransomware attacks in 2017 that has led industries in manufacturing, utilities, oil & gas, mining etc. scrambling from what was a…

These vulnerabilities were discovered by Carlos Pacho of Cisco Talos Today, Talos is disclosing several vulnerabilities that have been identified in Moxa EDR-810 industrial secure router. Moxa EDR-810 is an industrial secure router with firewall/NAT/VPN and managed Layer 2 switch functions. It is de…

This post was authored by Martin Lee and Warren Mercer, based on research conducted by Patrick DeSantis. Industrial Control Systems provide stability to civilization. They clean our water, deliver our power, and enable the physical infrastructure that we have learnt to rely on. Industrial Control Sy…

IEC 60870-5-104 Protocol Detection Rules Cisco Talos has released 33 Snort rules which are used to analyze/inspect IEC 60870-5-104 network traffic. These rules will help Industrial Control Systems/Supervisory Control and Data Acquisition (ICS/SCADA) asset owners to allow the identification of both n…

The HAVEX worm is making the rounds again. As Cisco first reported back in September 2013, HAVEX specifically targets supervisory control and data acquisition (SCADA), industrial control system (ICS), and other operational technology (OT) environments. In the case of HAVEX, the energy industry, and…