Security News

Critical Bug in Siemens SIMATIC PLCs Could Let Attackers Steal Cryptographic Keys
2022-10-12 10:41

A vulnerability in Siemens Simatic programmable logic controller can be exploited to retrieve the hard-coded, global private cryptographic keys and seize control of the devices. "An attacker can use these keys to perform multiple advanced attacks against Siemens SIMATIC devices and the related TIA Portal, while bypassing all four of its access level protections," industrial cybersecurity company Claroty said in a new report.

Siemens Releases Patches to Prevent Remote Takeover of SIMATIC HMI Panels
2021-02-04 04:32

Siemens has released patches for some of its SIMATIC human-machine interface panels to address a high-severity vulnerability that can be exploited remotely to take full control of a device. SIMATIC HMI panels are designed for operator control and the monitoring of machines and plants.

Siemens Releases 7 Advisories for SIMATIC, SCALANCE Vulnerabilities
2018-11-14 14:35

Siemens on Tuesday released 7 new advisories to inform customers of potentially serious vulnerabilities affecting various SIMATIC and SCALANCE products. Patches and/or mitigations are available...

Severe DoS Flaw Discovered in Siemens SIMATIC PLCs
2018-05-15 16:42

Siemens informed customers on Tuesday that some of its SIMATIC S7-400 CPUs are affected by a high severity denial-of-service (DoS) vulnerability. read more

Siemens Patches Flaws in SIMATIC Controllers, Mobile Apps
2018-03-21 12:33

German industrial giant Siemens has released security patches for several of its SIMATIC products, including some controllers and a mobile application. Organizations using SIMATIC products were...

Siemens Update Patches SIMATIC PCS 7 Bug in Some Versions
2017-11-03 15:00

Siemens has fixed a remotely executable vulnerability in some versions of its SIMATIC PCS 7 distributed control system, and said that it is working on a fix for remaining affected versions.

Siemens Patches Vulnerabilities in SIMATIC CP, XHQ (Threatpost)
2017-06-23 18:07

Siemens patched two vulnerabilities in products, SIMATIC CP and XHQ, commonly found in industrial control system setups this week

Siemens Patches Flaws in SIMATIC, XHQ Products (Security Week)
2017-06-23 11:46

Siemens and ICS-CERT published advisories this week to alert users of improper authentication and privilege escalation vulnerabilities affecting some SIMATIC and XHQ products. read more

Siemens Firmware Updates Patch SIMATIC Vulnerabilites (Threatpost)
2016-06-13 18:13

Siemens has provided firmware updates addressing vulnerabilities in the SIMATIC WinCC flexible and the SIMATIC S7-300 CPU family.