Security News > 2020 > July > Industrial Systems Can Be Hacked Remotely via VPN Vulnerabilities
Vulnerabilities discovered by researchers in VPN products primarily used for remote access to operational technology networks can allow hackers to compromise industrial control systems and possibly cause physical damage.
Researchers from industrial cybersecurity company Claroty have identified potentially serious vulnerabilities in Secomea GateManager, Moxa EDR-G902 and EDR-G903, and HMS Networks' eWon.
Learn more about vulnerabilities in industrial systems at SecurityWeek's 2020 ICS Cyber Security Conference and SecurityWeek's Security Summits virtual event series.
As for the eWON product from HMS Networks, specifically its eCatcher VPN client, Claroty discovered a critical stack-based buffer overflow that can be exploited for arbitrary code execution - and ultimately to take complete control of the targeted machine - by getting a user to open a malicious website or email.
Once potential targets have been found, threat actors can exploit the vulnerabilities remotely, without any authentication, to access the devices and eventually the internal VPN network.