On Saturday researchers at Claroty released a white paper detailing a novel attack Proof of Concept (PoC) leveraging internet-exposed Programmable Logic Controllers (PLCs). Named “Evil PLC,” the attack abuses the inherent trust between engineer workstations and PLCs by loading a malicious payload onto the PLC, convincing an engineer to connect to it via an error code, and tricking the software on the engineer’s workstation into executing the malicious payload. The researchers successfully produced PoCs for seven different companies: Rockwell Automation, Schneider Electric, GE, B&R, XINJE, OVARRO, and Emerson. They also identified nearly 70,000 PLCs that were exposed to the internet at the time of the report.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.