Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Microsoft found a security bug so powerful that it could shut down a power plant
Specifically, the vulnerability affects the CODESYS V3 software development kit (SDK) that is used to program logic controllers, devices that open and close valves, rotate motors, and control many physical devices. inside industrial facilities worldwide such as power generation plants, energy automation, and process automation.
The SDK allows developers to be compatible with IEC 611131-3, a safe programming language system for use in industrial environments.
According to a Microsoft report, if a hacker performed a DOS attack on a device using a vulnerable version of CODESYS, it could shut down a power plant, interfere with its operations, and cause the systems to fail. Control logic runs abnormally, or steals important information.
Many vendors around the world are using CODESYS, so a single vulnerability can affect multiple sectors, device types, and verticals. The 15 vulnerabilities discovered by Microsoft can all lead to DoS and RCE attacks. Although exploiting these vulnerabilities requires deep knowledge of CODESYS V3's proprietary protocol as well as user authentication, a successful attack has the potential to cause massive damage to target users. pepper.
Since September 2022, Microsoft has privately reported the vulnerabilities to the CODESYS developer unit and has released patches. Many vendors using the SDK now have the updates installed.
Isabella HumphreyYou should read it
- 'Printer Catastrophe' Vulnerability Threatens All Versions of Windows
- Log4Shell zero-day vulnerability discovered, the new nightmare of enterprises
- The NSA issued an urgent warning about a critical vulnerability appearing in Windows servers
- New privilege escalation vulnerability called 'Dirty Pipe' is threatening all Linux distros
- This critical vulnerability turns home devices into attack tools
- Detected Critical Security Bugs Affecting All Versions of Windows
- Vulnerability in WinRAR puts users at risk of being attacked
- NVIDIA Jetson chipset contains a series of security holes that allow data theft, DDoS attacks
May be interested
- Microsoft revealed the 'system crash' incident in early June was caused by a DDoS attack
during the first week of june, microsoft unexpectedly experienced a severe outage affecting most of its services including azure, outlook, and teams. - Leaked Microsoft document claims PS5 Slim will launch this year for $399a recently leaked document has provided insight into sony's plans for the playstation 5 lineup, and notably, the leak is coming from rival microsoft itself.
- Apple releases urgent zero-day patches for iOS, iPadOS and macOS, users noteapple has just rushed to release a series of rapid security response (rsr) updates to address a new zero-day vulnerability that is being actively exploited.
- Are viruses still a threat to cybersecurity?viruses were once the top cybersecurity threat globally, but is it still the case? how common were viruses once and are they still dangerous today?
- How is Computer Vision used to detect phishing attacks?computer vision, computer vision, computer vision detects phishing attacks, computer vision detects phishing attacks, detects phishing attacks with computer vision
- 5 Multi-Factor Authentication Vulnerabilities and how to fix themmulti-factor authentication (mfa) elevates cybersecurity standards by requiring users to prove their identity in multiple ways before accessing the network.
Nuclear power plant start-up process
The 'mirror super power plant' from 12,000 giant mirrors produces electricity even at night
How to Shut Down Windows 8
Should Shut Down, Sleep or Hibernate laptop?
Users should be wary of this Microsoft Teams security flaw