OT:ICEFALL Research from Forescout Explores Insecure-by-Design State of Operational Technology
The latest research from Forescout’s Vedere Labs explores the state of risk management in operational technology through the lens of 56 insecure-by-design vulnerabilities.
Background
On June 20, Forescout’s Vedere Labs published their latest research findings into operational technology (OT) vulnerabilities titled OT:ICEFALL. This group has been examining vulnerabilities affecting OT security for a few years now and has produced notable findings including: NUCLEUS:13, NAME:WRECK, NUMBER:JACK and AMNESIA:33.
OT:ICEFALL sought to analyze and understand the prevalence and impact of insecure-by-design vulnerabilities in OT products. The researchers took a systemic look at OT risk management. The research notes that many factors complicate OT risk management including the certification of vulnerable products, lack of CVE assignment and supply chains propagating vulnerabilities. In the course of this research, Forescout also disclosed 56 vulnerabilities across nine vendor’s products. A tenth vendor is also affected by four vulnerabilities, but they are still going through the disclosure process.
Analysis
The 56 vulnerabilities are all tied to “insecure-by-design” flaws common in the OT space within the following products:
Vendor Impacted Products Bently Nevada
3700
TDI equipment
Emerson
DeltaV
Ovation
OpenBSI
ControlWave
BB 33xx
ROC
Fanuc
PACsystems
Honeywell
Trend IQ
Safety Manager FSC
Experion LX
ControlEdge
Saia Burgess PCD
JTEKT Toyopuc Motorola
MOSCAD
ACE IP gateway
MDLC
ACE1000
MOSCAD Toolbox STS
Omron
SYSMAC Cx series
Nx series
Phoenix Contact ProConOS Siemens WinCC OA Yokogawa STARDOM
These vulnerabilities can be grouped
Read more