Siemens Discovers Vulnerabilities to it's Industrial Switches
Cybersecurity attacks and vulnerabilities can happen to companies of all sizes. Siemens, a company with revenue in the billions, announced on Tuesday that they discovered some of their products had cyber vulnerabilities. According to Siemens and Cybersecurity and Infrastructure Security Agency (CISA), “SCALANCE X-200 switches are affected by a security hole that allows an unauthenticated attacker to cause a device to enter a Denial of Service (DoS) condition by repeatedly sending large message packets to the Telnet service.” DoS attacks are one of the most powerful tools of attack in a cybercriminal’s arsenal and can disrupt even the most secure computer network. Siemens has not yet fixed the vulnerabilities but has informed the customers they can prevent potential attacks by disabling Telnet on the affected devices and restricting access to TCP port 23. Siemens also informed the customers about SCALANCE X switches and SCALANCE SC firewalls that are affected by two medium-risk defects that can be exploited in DoS attacks and execute random orders. Siemens has issued a notice describing a very serious DoS vulnerability affecting the SINAMICS web server.
A DoS attack occurs when real users are unable to access information systems, devices, or other network resources from the actions caused by malicious cyber attackers. These attacks can prevent users from accessing email, websites, online accounts, or other services that rely on network connectivity. A DoS attack floods a network with traffic causing it to crash and then becomes unusable for legitimate users. DoS attacks are costly for organizations, they spend a lot of money and time to get their services working. In addition to the time spent fixing the issue, the amount of time their systems are down can cost them a lot of money. It is inevitable to be able to prevent all cyber-attacks but being able to mitigate the risks and catch these attacks before they cause too much damage is critical.
Let us help you protect your individual needs, customers, and business data. RB Advisory is your one stop shop for all cybersecurity and compliance needs. We look forward to bringing you peace of mind and complete security.