critical infrastructure

Rockwell Automation’s FactoryTalk Historian integration with ThingWorx stands as a cornerstone in the rapidly evolving landscape of industrial automation and digital transformation. When headlines broke regarding a critical vulnerability tied to its use of Apache log4net configuration files...

As cyber threats continue to evolve in sophistication and scale, the U.S. critical infrastructure landscape has found itself facing increasingly potent adversaries—none more currently relevant than threat actors wielding the LummaC2 malware. In a joint Cybersecurity Advisory released by the...

The rise of LummaC2 malware as a potent threat to organizational cybersecurity has garnered front-page attention among security professionals and system administrators alike, and with good reason: a joint advisory from the Federal Bureau of Investigation (FBI) and the Cybersecurity and...

Russian state-sponsored cyber operations have become one of the most significant digital threats facing the critical sectors of North America and Europe, with Western logistics and technology companies now on especially high alert. A newly published joint Cybersecurity Advisory from agencies...

Industrial automation’s march toward hyper-connectivity brings undeniable efficiency benefits, but for organizations relying on Schneider Electric’s popular Modicon line of programmable logic controllers (PLCs), a newly disclosed—and remotely exploitable—vulnerability has shaken assumptions...

May 20, 2025 marked a significant moment in the ongoing quest for industrial cybersecurity resilience as the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released thirteen new Industrial Control Systems (ICS) advisories. These advisories serve not only as a warning to operators...

A critical vulnerability has sent ripples through the global industrial cybersecurity community: all versions of Schneider Electric’s Galaxy VS, Galaxy VL, and Galaxy VXL uninterruptible power supplies (UPS), widely used to protect critical infrastructure, are exposed to a remotely exploitable...

Nearly every organization that designs, simulates, or verifies electronic circuits has at least heard of National Instruments’ Circuit Design Suite, a staple in both academic settings and the professional engineering domain. But beneath its trusted reputation and widespread adoption, recent...

Siemens Siveillance Video, a well-established software solution in the video management domain, stands as an integral pillar of many critical infrastructure and enterprise security environments worldwide. Designed to be the keystone in layered surveillance deployments, Siveillance Video...

The recent blocking of International Criminal Court (ICC) Chief Prosecutor Karim Khan’s Microsoft email account has sent ripples throughout the Netherlands, sparking an intense debate over the country’s reliance on U.S. technology giants. The incident, directly tied to U.S. foreign policy in the...

The Siemens MS/TP Point Pickup Module, a specialized device widely deployed across sectors such as commercial facilities, government infrastructure, healthcare, information technology, and transportation, has recently been found vulnerable to a newly identified security flaw. This vulnerability...

From the engines powering modern factories to switches safeguarding citywide power grids, Siemens’ RUGGEDCOM APE1808 devices serve as the backbone of critical infrastructure worldwide. Designed for the extreme, these robust devices are workhorses of the industrial edge, trusted by sectors that...

The cybersecurity landscape for industrial control systems (ICS) continues to grow increasingly complex and fraught with risk. On May 15, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) underscored this reality by releasing an unprecedented set of twenty-two advisories...

Few software systems are as deeply embedded in the fabric of modern industrial operations as Siemens INTRALOG WMS, a Warehouse Management System that finds itself at the heart of logistics operations in critical sectors worldwide. In the landscape of operational technology (OT) and industrial...

When news of a security vulnerability strikes a cornerstone of industrial management, it’s a wake-up call for all involved with operational technology—especially when that system comes from an industry heavyweight like Schneider Electric. The recent discovery, detailed in public advisories by...

The Siemens Desigo CC platform, a flagship building management system deployed in commercial and critical manufacturing sectors worldwide, has emerged at the center of a high-severity cybersecurity advisory, underlining both the increasing sophistication of threats to industrial control systems...

Siemens Teamcenter Visualization, a core component within many global manufacturing environments, recently became the center of attention in the industrial cybersecurity sphere following the disclosure of a high-severity vulnerability. This development has prompted both Siemens and international...

When critical infrastructure depends on the seamless operation of digital devices, security vulnerabilities in foundational industrial products can have far-reaching effects across sectors and national borders. Recent advisories concerning the Siemens SIPROTEC and SICAM product families have...

When critical infrastructure depends on digital controls, vulnerabilities in supervisory technology can reverberate far beyond a typical IT breach. Recent security advisories concerning Siemens OZW web servers have thrown a harsh spotlight on this persistent risk, revealing two high-severity...

Siemens’ User Management Component (UMC) forms a critical backbone for authentication and authorization across a spectrum of the company’s renowned industrial automation offerings. Recent advisories, including those published by authoritative bodies like the U.S. Cybersecurity and Infrastructure...