You are here

Home » Cybersecurity

Cybersecurity

Siemens Industrial Products SNMP Vulnerabilities (Update B) (ICSA-20-042-02) – Products Used in the Water and Wastewater and Energy Sectors

August 11, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

July 14, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

February 13, 2020

Siemens Industrial Real-Time (IRT) Devices (Update D) (ICSA-19-283-01) - Product Used in the Energy Sector

August 11, 2020

CISA has updated this advisory with additional information on the affected products. Read the advisory at CISA.

February 11, 2020

CISA has updated this advisory with additional information on the affected products and mitigating measures. Read the advisory at CISA.

January 14, 2020

Siemens CP, SIMATIC, SIMOCODE, SINAMICS, SITOP, and TIM (Update I) (ICSA-19-099-06) – Products Used in the Water and Wastewater and Energy Sector

August 11, 2020

CISA has updated this advisory with additional details on the affected products and mitigation measures. Read the advisory at CISA.

June 9, 2020

CISA has updated this advisory with additional details on the affected products and mitigation measures. Read the advisory at CISA.

Siemens Industrial Products (Update P) (ICSA-17-339-01) – Product Used in Water and Wastewater and Energy Sectors

August 11, 2020

CISA has updated this advisory with additional information on affected products. Read the advisory at CISA.

July 14, 2020

CISA has updated this advisory with additional information on affected products and mitigation measures. Read the advisory at CISA.

October 8, 2019

Tags: 
ics-cert siemens

Siemens industrial products using the Discovery Service of the OPC UA protocol stack by the OPC foundation (Update D) (ICSA-17-243-01) – Product Used in Energy and Water and Wastewater Systems Sector

August 11, 2020

CISA has updated this advisory with information on affected products and mitigation measures. Read the advisory at CISA.

February 5, 2019

The NCCIC has updated this advisory with information on affected products and mitigation measures. Read the advisory at NCCIC/ICS-CERT.

Tags: 
ics-cert siemens energy sector water and wastewater systems sector

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update R) (ICSA-17-129-02) – Product Used in Energy and Water and Wastewater Sectors

August 11, 2020

CISA has updated this advisory with additional information on affected products and mitigation measures. Read the advisory at CISA.

July 14, 2020

CISA has updated this advisory with additional information on affected products. Read the advisory at CISA.

October 8, 2019

Tags: 
ics-cert siemens profinet discovery and configuration protocol

Siemens Automation License Manager (ICSA-20-224-07) – Products Used in the Water and Wastewater and Energy Sectors

CISA has published an advisory on an improper authorization vulnerability in Siemens Automation License Manager. For Automation License Manager 5, all versions are affected. For Automation License Manager 6, all versions prior to v6.0.8 are affected. Successful exploitation of this vulnerability could allow an attacker to locally escalate privileges and modify files that should be protected against writing. For Automation Manager 5, Siemens recommends users disable access to drives which have licenses installed, for non-administrator users.

Microsoft Releases August 2020 Security Updates

Microsoft has released its monthly update to address vulnerabilities in its software. For this month, Microsoft has released security updates for Microsoft Windows, Microsoft Edge (EdgeHTML and Chromium-based), Microsoft ChakraCore, Internet Explorer, Microsoft Scripting Engine, SQL Server, Microsoft JET Database Engine, .NET Framework, ASP.NET Core, Microsoft Office and Microsoft Office Services and Web Apps, Microsoft Windows Codecs Library, and Microsoft Dynamics.

Pages

Subscribe to Cybersecurity