![]() Meanwhile Siemens released its own statement: ![]() “As long as you have access to network you will be able to exploit them.” “They’re very easy to exploit,” Beresford said. In an interview with Wired Magazine, Beresford offered this comment: Siemens appears to claim otherwise, stating “ The S7-300 and S7-400 controllers are not affected by the denial-of-service scenario, so there is no need for any firmware update with these controllers.” And NSS Labs state that “ There is a possibility that PLCs from other vendors are similarly affected.” That is quite a range of affected products… Beresford and Siemens Disagree on which Products are Affected Beresford claims that even though the attacks were developed on an S7-1200, other models of the S7 are also vulnerable. Let’s start with what products are affected. Unfortunately, information on the range and severity of the vulnerabilities has been contradictory. ![]() The recent news that Dillon Beresford at NSS Labs had discovered somewhere between four and six serious vulnerabilities in the Siemens S7 PLC product has created quite a storm of news and concern for critical asset owners. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |