There are rumors that another industrial control system
advisory has been released to the US-CERT Secure Portal by the DHS ICS-CERT.
Typically these advisories are for high-risk vulnerabilities for control
systems used in critical infrastructure. They are released in limited
distribution to allow critical infrastructure owners to take appropriate
mitigation measures before the vulnerabilities are made public.
Again, I do not have access to the Secure Portal (if I did I
would not be able to write posts like this), so I am not able to confirm the
veracity of these rumors. Control system owners and ICS security vendors can
get access by contacting ICS-CERT (see the bottom of their web page
for instructions) and determine if any of the control system applications that
they are using have active advisories listed on the Secure Portal.
Posts
No comments:
Post a Comment