Security News > 2021 > March > Vulnerabilities in TBox RTUs Can Expose Industrial Organizations to Remote Attacks
UK-based industrial automation company Ovarro recently patched a series of vulnerabilities in its TBox remote terminal units.
Ovarro's TBox RTUs are described by the vendor as a remote telemetry solution for remote automation and monitoring of critical assets.
Researchers at industrial cybersecurity firm Claroty discovered last year that the TBox RTUs, as well as the associated TWinSoft engineering software, are affected by five types of vulnerabilities.
"Using these security shortcomings, we were able to find web-based interfaces, similar to HMIs, that monitor process levels and other industrial activity. We've seen in the past what could go wrong when such an interface is exposed to the internet without security; the fact such interfaces are exposed online removes many barriers to entry for adversaries of all types."
The company has conducted a search for TBox RTUs and discovered that more than 62% of the systems exposed to the internet did not require authentication.
Claroty reported last month that the number of vulnerabilities discovered in industrial control system products in 2020 increased significantly compared to previous years.
News URL
Related news
- Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack (source)
- GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- Airplay-enabled devices open to attack via “AirBorne” vulnerabilities (source)