ICS/OT/SCADA Impacting Vulnerability – Microsoft to Force DCOM Patch in March, Could Shutdown ICS/OT/SCADA Devices

Microsoft DCOM Patch Incompatibility Requires Resolution Before March 14, 2023

Attention: ICS/OT/SCADA engineers and operators are encouraged to assess the use of the DCOM component in your industrial environment before March 14, 2023.

Distributed Component Object Model (DCOM) is a software component embedded in industrial control systems (ICS) from companies like Rockwell Automation, Honeywell, Siemens and GE. On March 14, 2023, Microsoft will no longer allow delay of its DCOM Server Security Feature Bypass from June 2021.

Why is this important? When Microsoft forces the update on March 14, 2023, this could trigger ICS/OT/SCADA equipment shutdowns unless there are backups available prior to the patch enablement.

Additional Analysis and Information

• https://www.industrialcybersecuritypulse.com/strategies/the-permanent-microsoft-dcom-hardening-patch-could-shut-down-your-ics/
• Unsolicited Response podcast, hosted by Dale Peterson – Dino on DCOM Patch and ICS https://www.youtube.com/watch?v=Wtox8rMvA40