Rockwell Automation vulnerability exploited in the wild by state sponsored attackers
Take action: Attacks from state sponsored hackers are nearly guaranteed to succeed - simply because they have massive amounts of resources, protection and simply - it's their day job to hack you. So start patching your Rockwell Automation components.
Learn More
CISA has issued a warning regarding a vulnerability in industrial technology from Rockwell Automation that is being actively exploited by government hackers.
The vulnerabilities in question are:
- CVE-2023-3595 (CVSS score 9.8)
- CVE-2023-3596 (CVSS score 7.5)
These vulnerabilities affect a line of communication modules and enable hackers to gain control over affected devices, potentially leading to the theft of operational data or the manipulation of devices, ultimately resulting in disruptive or destructive consequences within the industrial process governed by the ControlLogix system.
The affected product from Rockwell Automation is commonly utilized by companies in industries such as manufacturing, electric, oil and gas, and liquified natural gas, making them a strategically valuable targets for attacks for other countries.
In response to the vulnerabilities, Rockwell Automation promptly released updates for all affected devices.
OT experts emphasized the urgency for all OT companies to update their firmware to the latest version as soon as possible.
