Today the DHS ICS-CERT updated their control system security alert for physical vulnerabilities in a wide variety of MEMS accelerometers. The original alert was published on March 14th, 2017.
Today’s update provides a link to another manufacturer’s (Analog Devices) alert about the problem with a slightly different look at the vulnerability.
Interestingly, ICS-CERT still does not provide acknowledgement of researchers who discovered the vulnerability nor does it provide a link to their academic paper that describes the vulnerability. Nor does it mention the cute vulnerability name that has been attached to the problem by the researchers; ‘Walnut’. I guess that ICS-CERT is the tough nut to crack.