ICS Ethernet Switches Littered with Flaws

Kacy Zurkus | March 11, 2019

ICS Ethernet Switches Littered with Flaws
Security researchers discovered multiple vulnerabilities in Moxa industrial switches, according to Positive Technologies and Moxa. Moxa published a security advisory stating that it had issued resolutions for the vulnerabilities in the EDS-405A, EDS-408A, EDS-510A, and IKS-G6824A series ethernet switches that are used to build industrial networks across several sectors including oil and gas, transportation, and maritime logistics. “A vulnerable switch can mean the compromise of the entire industrial network. If ICS components are parts of the body, you can think of network equipment as the arteries that connect them all. So disruption of network interactions could degrade or even stop ICS operations entirely,” said Paolo Emiliani, industry and SCADA research analyst at Positive Technologies, in a press release. Three of the vulnerabilities were identified as highly dangerous, according to the press release. Security experts Ivan Boyko, Vyacheslav Moskvin and Sergey Fedonin said, “The flaws could allow an attacker to recover passwords from a cookie intercepted over the network or by using XSS, extract sensitive information, or brute force credentials using the proprietary configuration protocol to obtain control over the switch and possibly the entire industrial network.” Five of the vulnerabilities are specific to the EDS-405A series, EDS-408A series and EDS-510A series. Though an authenticated user could execute arbitrary code by exploiting any of the vulnerabilities, one of the identified vulnerabilities is "missing encryption of sensitive data," which would allow an attacker access from the unlock function, according to the advisory.  In the IKS-G6824A series, researchers discovered plain text storage of passwords that could allow an attacker to reboot the device. In addition, an improper web interface access control could “results in read-only users being able to alter configurations.” As a fix, Moxa said, “We suggest that users disable the web console access (HTTP) and use other consoles, such as SNMP/Telnet/CLI, to eliminate this potential vulnerability.” Customer can also request new firmware patches for several of the listed vulnerabilities.

Spotlight

Hoosba is a worldwide online & mobile platform by Intellectsoft that simplifies the way you buy, rent and sell property. Available across Android and iOS devices and desktop, Hoosba allows a range of actions that include: searching, etc.


Other News
SOFTWARE

Nintex Workflow Cloud Now Includes AI-Based Capabilities and Integrations

Nintex | July 28, 2021

Nintex, the global system for process management and automation, announced today the latest enhancements to its next generation Nintex Workflow Cloud, which is designed for operations, IT, process professionals, and system administrators to reform the way employees work by making it quicker and easier to manage, digitise, and optimise business processes and workflows. The following are some of the most desired new features and functionality in Nintex Workflow Cloud's current release: Intelligent PDF Form Converter - This AI-powered tool converts static PDFs into interactive digital forms in real time. Nintex W...

Read More

SOFTWARE

BlackBerry Jarvis 2.0 Is Released to Address the Expanding Global Embedded Cybersecurity Landscape

BlackBerry | July 27, 2021

BlackBerry Limited today announced the availability of BlackBerry Jarvis 2.0, the company's premier software composition analysis tool. BlackBerry Jarvis 2.0 introduces a SaaS version of the original Jarvis capabilities, providing developers and integrators with a more user-friendly, focused feature set centred on the three most important areas that those developing mission-critical applications must validate to ensure the quality of their multi-tiered software supply chain: Open-source Software (OSS), Common Vulnerabilities, and Exposurability. BlackBerry Jarvis 2.0, designed to address the increasing complexity and growing cybersecurity threats among multi...

Read More

AI TECH

Atos and Graphcore Collaborate to Provide Sophisticated AI HPC Solutions Around the World

Atos | July 26, 2021

Atos and Graphcore have announced a partnership to accelerate AI performance and innovation by integrating Graphcore's sophisticated IPU compute platforms into Atos' recently launched ThinkAI offering to supply AI high-performance solutions to clients worldwide. This collaboration will benefit both parties. Graphcore will gain access to a plethora of new customers, sectors, and regions thanks to Atos' long-standing position as a European leader in high-performance computing (HPC) and trusted advisor, provider, and integrator of HPC solutions at scale. Graphcore, for its part, will collaborate with Atos to broaden its global reach by focusing on large corporate ente...

Read More

SOFTWARE

AnyVision Introduces OnPatrol Tactical AI-Based Surveillance for Law Enforcement and Military Police, Providing Real-Time Situational Awareness

AnyVision | July 23, 2021

AnyVision, the world's leading Recognition AI firm, today announced the release of OnPatrol, a tactical surveillance mobile app that protects law enforcement and military personnel by recognising people of interest and alerting officers in real-time via their mobile device (e.g., phone or bodycam). “It is critical for the public to have faith in the safety and security offered by law enforcement services. AnyVision OnPatrol can assist de-escalate possible threats and avert physical harm by recognising criminals and dangerous individuals in real-time using our Recognition AI technology,” stated AnyVision CTO Dieter Joecker. “It is specifically built to rec...

Read More

Spotlight

Hoosba is a worldwide online & mobile platform by Intellectsoft that simplifies the way you buy, rent and sell property. Available across Android and iOS devices and desktop, Hoosba allows a range of actions that include: searching, etc.

Resources

Events