Report

Threat landscape for industrial automation systems. Statistics for H2 2021

The percentage of ICS computers attacked globally was 31.4%. The percentage for different countries was in the range from 54.9% to 8.5%.

Vulnerability in FortiGate VPN servers is exploited in Cring ransomware attacks

Report

Lazarus targets defense industry with ThreatNeedle

Report

Attacks on industrial enterprises using RMS and TeamViewer: new data

VNC vulnerability research

Report an incident

Reports All

Targeted attack on industrial enterprises and public institutions

The attackers were able to penetrate dozens of enterprises and even hijack the IT infrastructure of some, taking control of systems used to manage security solutions. The goal of this series of attacks was cyberespionage.

08 August 2022

Dynamic analysis of firmware components in IoT devices

Firmware analysis is an essential part of security research and targeted search for vulnerabilities in IoT products. This article examines conventional methods of dynamic analysis and some less obvious methods.

06 July 2022

Attacks on industrial control systems using ShadowPad

A previously unknown Chinese-speaking threat actor attacking telecommunications, manufacturing, and transport organizations in several Asian countries. The group exploits MS Exchange vulnerability to deploy ShadowPad malware and infiltrates building automation systems of one of the victims.

27 June 2022

More reports

Advisories All

KLCERT-21-007: Schneider Electric EcoStruxure Control Expert / Process Expert, SCADAPack RemoteConnect for x70. Information leak from project file

20 May 2022

KLCERT-20-061 / KLCERT-20-068: Schneider Electric Modicon M340/M580 Authentication Bypass by Spoofing

20 May 2022

KLCERT-20-038: Bosch AMC2. Missing authentication for critical function

20 January 2022

More advisories

Blog All

Draft of the NIST Guide #800-82 – what has changed
24 May 2022
Vulnerability in ICS: assessing the severity
20 April 2022
Good old buffer overflow
31 March 2021
More blog

Services All

Kaspersky ICS CERT provides unique services in the area of industrial automation system and internet-of-things cybersecurity

Be Aware

Keep up to date on threats and risks relevant to your organization

Get Ready

Empower your workforce with cybersecurity knowledge

Respond

Expert handling of security incidents using our professional services

Transform

Rethink your approach to cybersecurity from the ground up

More services

Events All

Kaspersky ICS CERT experts participate in conferences and conduct training courses, seminars, workshops, and CTF contests
22Dec 2021

TÜV Austria Academy will offer Kaspersky training courses
2Dec 2021

Kaspersky Industrial Cybersecurity Conference 2021
29Oct 2021

Are industrial organizations a target for cybercriminals?
More events

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.