Security
Vulnerability discovered in Scalance switches from Siemens
Nozomi Networks Labs has discovered a new vulnerability in Siemens' Scalance Switches. It affects the Telnet server and allows a hacker to crash the service by sending large amounts of packets via TCP port 23.
If the attacker succeeds in crashing the service, the device restarts automatically and interrupts the network connection of all connected devices. This could potentially lead to operating processes being interrupted. The vulnerability is not necessarily easy to exploit, but an attacker does not need a deep understanding of specific protocols and systems. He only needs to be reasonably familiar with the standard Telnet protocol. Siemens has not released a firmware update regarding the vulnerability, but has provided recommendations for affected companies.
Nozomi Networks Labs has written a blog post about the discovered vulnerability.
You might also be interested in
Another security gap
The Claroty Research Team has identified and reported a serious vulnerability to bypass the memory protection of the S7-1200 and S7-1500 PLCs.
read more...Mushroom is the victim of a targeted hacker attack
The automation technology provider Pilz from Ostfildern was the victim of a targeted cyber attack on Sunday, October 13. All server and PC workstations worldwide, including the company's communication network, were affected.
read more...Submit presentations by January 8
The 'Forum Safety & Security' will once again take place in Stuttgart from June 23 to 24, 2020. Participate with technical presentations and experience reports on the topic of safety - suggestions for topics can be submitted until January 8.
read more...Body reaction as a password
Forgot your password? The Paluno Software Technology Institute at the University of Duisburg-Essen (UDE) is researching a new approach that combines biometrics and password protection.
read more...Huawei - new processor and own framework for AI
With the Ascend 910, Chinese telecommunications provider Huawei has unveiled what it claims is the world's most powerful AI processor. Also new: the AI framework MindSpore, which will be available as an open source solution from 2020.
read more...Siemens - the 3rd quarter of 2019
'Digital Industries' and 'Gas and Power' cause concern
Despite considerable headwinds in key markets, Siemens grew its order intake and revenue in the third quarter of 2019. EBITA and profit, on the other hand, fell, mainly due to declines in 'Digital Industries' and 'Gas and Power'. The figures in...
read more...Engineering software / Security
Gap discovered in the 'Siemens Step 7 TIA Portal'
Tenable, a cyber security expert, has discovered a critical vulnerability in the 'Siemens Step 7 TIA Portal'. The vulnerability affects the same device family that was affected by Stuxnet.
read more...'Forum Safety & Security 2019'
The two sides of security
A total of 228 participants, speakers and exhibitors came together from July 8 to 10 in the Sindelfingen Stadthalle for an intensive exchange of information on the two sides of the "security coin" - as part of the 'Forum Safety & Security 2019'.
read more...Mechanical and plant engineering
VDMA study 'Industrial Security 2019' - the results
After 2013, the VDMA has once again conducted a survey on industrial security among manufacturing companies in Germany. The key results in a series of images.
read more...