A serious vulnerability was recently found in the Profinet industrial communication protocol exposes devices from Siemens, Moxa and possibly other vendors to denial-of-service (DoS) attacks.
The high-severity vulnerability was discovered last year by researchers at OTORIO, who found that an attacker could easily cause devices to enter a DoS condition — in some cases requiring a hard restart for recovery — by sending legitimate Profinet packets over the network.
According to the researchers, the vulnerability is so easy to exploit that it may be triggered by accident by an employee who misconfigures the network and can result in serious disruptions to operational processes.
The company’s researchers have confirmed that the vulnerability impacts products from Siemens and Moxa that use Profinet, but they believe products from other vendors may be affected as well. Tens of thousands of devices may be at risk of attacks, but warned that exploitation of the vulnerability is “almost impossible to detect.”
Experts Comments
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Younes Dragoni, Security Researcher , provides expert commentary at @Information Security Buzz.
"Organisations need to increase monitoring on their network...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-analysis-of-serious-vulnerability-discovered-in-profinet-industrial-communication-protocol
Facebook Message
@Younes Dragoni, Security Researcher , provides expert commentary at @Information Security Buzz.
"Organisations need to increase monitoring on their network...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-analysis-of-serious-vulnerability-discovered-in-profinet-industrial-communication-protocol