Industrial plant robots frequently connected to the ‘net without authentication 

Industrial robots are frequently exposed to the internet, creating a security risk in the process, according to new research from Trend Micro.Of the 83,000 robots researchers found exposed to the public internet, 5,000 had no authentication in place to guard against possible hack attacks.A report by security researchers at Trend Micro and computer scientists at the Politecnico di Milano (POLIMI) in Italy highlights five attack types (such as altering the robot’s state) which violate the three standard requirements of industrial robots: safety, integrity and accuracy.For example, a hacker might be able to alter the control system so that the robot moves unexpectedly or inaccurately, at the attacker’s will.The report (PDF) also uncovered 63 vulnerabilities in these systems.”The software running on industrial robots is outdated; based on vulnerable OSs and libraries, sometimes relying on obsolete or cryptographic libraries; and have weak authentication systems with default, unchangeable credentials,” the researchers report.

Source: Industrial plant robots frequently connected to the ‘net without authentication • The Register

Advertisements
Categories: Uncategorized

Post navigation

Comments are closed.

Create a free website or blog at WordPress.com.

%d bloggers like this: