On Saturday researchers at Claroty released a white paper detailing a novel attack Proof of Concept (PoC) leveraging internet-exposed Programmable Logic Controllers (PLCs). Named “Evil PLC,” the attack abuses the inherent trust between engineer workstations and PLCs by loading a malicious payload onto the PLC, convincing an engineer to connect to it via an error code, and tricking the software on the engineer’s workstation into executing the malicious payload. The researchers successfully produced PoCs for seven different companies: Rockwell Automation, Schneider Electric, GE, B&R, XINJE, OVARRO, and Emerson. They also identified nearly 70,000 PLCs that were exposed to the internet at the time of the report.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security