all InfoSec news
Widespread Logic Controller Flaw Raises the Specter of Stuxnet
Feb. 5, 2023, 11:01 p.m. | Lily Hay Newman
The RISKS Digest catless.ncl.ac.uk
Lily Hay Newman, *Ars Technica*, 11 Jan 2023, via ACM TechNews
Siemens has disclosed that a vulnerability in its SIMATIC S7-1500 series of
programmable logic controllers could allow attackers to install malicious
firmware and assume full control of the devices. Red Balloon Security
researchers discovered the vulnerability, which is the result of a basic
error in the cryptography's implementation. However, because the scheme is
physically burned onto a dedicated ATECC CryptoAuthentication chip, a
software patch cannot fix the vulnerability. Siemens …
ars technica attackers basic control controllers cryptography devices error firmware flaw install lily hay newman logic malicious programmable logic controllers red balloon red balloon security researchers result security security researchers series siemens simatic stuxnet technews vulnerability
More from catless.ncl.ac.uk / The RISKS Digest
EFI IPv6/PXE Security Flaw
3 months, 1 week ago |
catless.ncl.ac.uk
Imaging privacy threats from an ambient light sensor
3 months, 1 week ago |
catless.ncl.ac.uk
Re: CLEAR wants to scan your face at airports. Privacy experts are worried.
3 months, 1 week ago |
catless.ncl.ac.uk
Jobs in InfoSec / Cybersecurity
Security Specialist
@ Nestlé | St. Louis, MO, US, 63164
Cybersecurity Analyst
@ Dana Incorporated | Pune, MH, IN, 411057
Sr. Application Security Engineer
@ CyberCube | United States
Linux DevSecOps Administrator (Remote)
@ Accenture Federal Services | Arlington, VA
Cyber Security Intern or Co-op
@ Langan | Parsippany, NJ, US, 07054-2172
Security Advocate - Application Security
@ Datadog | New York, USA, Remote