New data from Dragos shows that ransomware attacks against ICS systems are increasing, and sophisticated malware designed for those environments is now a reality.
A set of serious flaws in the Contec CONPROSYS HMI software that could allow remote code execution have been addressed in an update.
A newly discovered flaw (CVE-2022-38465) in some Siemens S7 PLCs can allow an attacker to extract the hardcoded private key of the controller and gain complete control.
Siemens has patched dozens of vulnerabilities in several of its ICS products, including Parasolid, RuggedCom ROS, and Simcenter Femap.
CISA is warning customers about several locally exploitable flaws in Contec Health CMS8000 devices.