ics risk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged the ZLAN Information Technology Co. ZLAN5143D serial-to-Ethernet gateway — specifically firmware v1.600 — as affected by two high-severity weaknesses that allow an attacker to bypass authentication or reset device...

National Instruments’ flagship engineering tool LabVIEW is the subject of a coordinated security disclosure that identifies nine memory‑corruption vulnerabilities — ranging from out‑of‑bounds reads and writes to a use‑after‑free and a stack‑based buffer overflow — which, if triggered by a...

Hitachi Energy’s MSM (Modular Switchgear Monitoring) products are once again in the crosshairs after coordinated vulnerability disclosures revealed exploitable flaws in embedded web components and third‑party libraries — most notably an HTML injection/XSS issue in the GoAhead web server and an...

Delta Electronics has published an advisory warning that its COMMGR engineering and simulation software contains multiple high‑severity vulnerabilities — including a stack‑based buffer overflow (CVE‑2025‑53418) and a code‑injection flaw (CVE‑2025‑53419) — that affect COMMGR versions up to and...

Rockwell Automation’s ControlLogix EtherNet/IP communication modules have been publicly flagged for a high-severity vulnerability that, if left unaddressed, can grant remote attackers direct, low-complexity access to a running module’s memory — enabling memory dumps, arbitrary memory...

The Cybersecurity and Infrastructure Security Agency (CISA) has recently issued three critical advisories concerning vulnerabilities in industrial control systems (ICS). These advisories highlight significant security flaws in products from Leviton, Panoramic Corporation, and Johnson Controls...

The ever-increasing complexity and interconnectedness of industrial control systems (ICS) have made them both linchpins of critical infrastructure and prime targets for cyber threats. In response to the relentless evolution of ICS-related risks, the U.S. Cybersecurity and Infrastructure Security...

When news broke of a critical vulnerability in Siemens Energy Services, the industrial cybersecurity world paused to take a closer look. Siemens, a prominent player headquartered in Germany and active across global energy sectors, faces scrutiny following the public disclosure of...

Hitachi Energy’s Relion 670, 650 Series, and SAM600-IO devices underpin sophisticated protection and control systems within critical energy infrastructures globally. In a recent cybersecurity advisory, reportable and severe vulnerabilities have emerged within these core product...

When it comes to the backbone of modern automated manufacturing, the stability and resilience of programmable logic controllers (PLCs) like the Mitsubishi Electric MELSEC iQ-F Series can no longer be taken for granted. Recent vulnerability disclosures have brought into sharp relief just how...

In the rapidly evolving world of industrial security, the integrity of access control and building management systems stands as a linchpin to the broader safety of critical infrastructure. Among the keystone solutions in this arena, Siemens SiPass—a comprehensive access control system widely...

On May 22, the Cybersecurity and Infrastructure Security Agency (CISA) issued two critical advisories focused on vulnerabilities present in Industrial Control Systems (ICS), underlining the persistent challenges facing operational technology in industrial environments. As cyber threats evolve...

When security threats emerge in industrial automation, few products provoke as much concern—or demand as much attention from the cybersecurity community—as Siemens SIRIUS 3SK2 Safety Relays and SIRIUS 3RK3 Modular Safety Systems. Recently disclosed multiple vulnerabilities highlight not only the...

Within the rapidly evolving world of industrial automation, the intersection between connectivity and cybersecurity remains fraught with both technical promise and lurking vulnerability. Nowhere is this dynamic more evident than with the recent disclosure around the Milesight UG65-868M-EA...

Every week brings a fresh reminder of the relentless cybersecurity risks facing industrial control systems, but some warnings demand closer attention. On May 6, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released three new advisories concerning vulnerabilities in...

On April 29, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) took significant action by publishing three new advisories targeting vulnerabilities in Industrial Control Systems (ICS)—a sector that forms the backbone of critical national infrastructure. While ICS technologies...

The cybersecurity landscape for industrial control systems has once again shifted, with recent advisories drawing sharp attention to vulnerabilities in Rockwell Automation solutions utilizing VMware technologies. These vulnerabilities hover near the top of the risk spectrum, with multiple CVEs...

Schneider Electric has long been recognized as a leader in industrial automation and energy management. However, its widespread deployment in critical infrastructure sectors means security flaws in its products are not simply IT issues—they're converging with the heart of global operational...

In the rapidly evolving landscape of industrial cybersecurity, new vulnerabilities regularly come to light—each carrying the potential to disrupt critical manufacturing operations worldwide. One recent case has put Siemens’ Tecnomatix Plant Simulation software in the crosshairs, drawing...

Some days, the cyber world feels less like a battleground and more like the world’s most complicated Jenga tower—one wrong move and the whole thing could come tumbling down. Industrial Control Systems (ICS), the invisible machinery quietly running everything from water treatment plants to power...