OT:ICEFALL Research from Forescout Explores Insecure-by-Design State of Operational Technology

OT:ICEFALL Research from Forescout Explores Insecure-by-Design State of Operational Technology

The latest research from Forescout’s Vedere Labs explores the state of risk management in operational technology through the lens of 56 insecure-by-design vulnerabilities.

Background

On June 20, Forescout’s Vedere Labs published their latest research findings into operational technology (OT) vulnerabilities titled OT:ICEFALL. This group has been examining vulnerabilities affecting OT security for a few years now and has produced notable findings including: NUCLEUS:13, NAME:WRECK, NUMBER:JACK and AMNESIA:33.

OT:ICEFALL sought to analyze and understand the prevalence and impact of insecure-by-design vulnerabilities in OT products. The researchers took a systemic look at OT risk management. The research notes that many factors complicate OT risk management including the certification of vulnerable products, lack of CVE assignment and supply chains propagating vulnerabilities. In the course of this research, Forescout also disclosed 56 vulnerabilities across nine vendor’s products. A tenth vendor is also affected by four vulnerabilities, but they are still going through the disclosure process.

Analysis

The 56 vulnerabilities are all tied to “insecure-by-design” flaws common in the OT space within the following products:

Vendor Impacted Products Bently Nevada

3700

TDI equipment

Emerson

DeltaV

Ovation

OpenBSI

ControlWave

BB 33xx

ROC

Fanuc

PACsystems

Honeywell

Trend IQ

Safety Manager FSC

Experion LX

ControlEdge

Saia Burgess PCD

JTEKT Toyopuc Motorola

MOSCAD

ACE IP gateway

MDLC

ACE1000

MOSCAD Toolbox STS

Omron

SYSMAC Cx series

Nx series

Phoenix Contact ProConOS Siemens WinCC OA Yokogawa STARDOM

These vulnerabilities can be grouped

Read more

Explore the site

More from the blog

Latest News