Unnamed APT eyes vulnerabilities in Rockwell Automation industrial contollers (CVE-2023-3595 CVE-2023-3596)

Rockwell Automation has fixed two vulnerabilities (CVE-2023-3595, CVE-2023-3596) in the communication modules of its ControlLogix industrial programmable logic controllers (PLCs), ahead of expected (and likely) in-the-wild exploitation. “An unreleased exploit capability leveraging these vulnerabilities is associated with an unnamed APT (Advanced Persistent Threat) group,” industrial cybersecurity company Dragos has stated on Wednesday. About the vulnerabilities (CVE-2023-3595, CVE-2023-3596) CVE-2023-3595 allows attackers to manipulate firmware memory, perform remote code execution with persistence, and modify, deny, and exfiltrate … More →

The post …

advanced advanced persistent threat apt automation communication controllers critical infrastructure cve cybersecurity cybersecurity company don't miss dragos energy sector exploit exploitation firmware hot stuff ics industrial industrial cybersecurity logic manufacturing sector modules persistent persistent threat plc plcs programmable logic controllers rockwell rockwell automation scada security update threat vulnerabilities vulnerability