70 percent of ICS vulnerabilities can be exploited remotely

A new Biannual ICS Risk and Vulnerability Report, released today by Claroty, reveals that more than 70 percent of industrial control system (ICS) vulnerabilities disclosed in the first half of 2020 can be exploited remotely. Earlier this week we looked at how project files can be used to attack ICS systems even if they're air-gapped, but this report highlights the importance of protecting internet-facing ICS devices and remote access connections. The most common potential impact is remote code execution (RCE), possible with 49 percent of vulnerabilities -- reflecting its prominence as the leading area of focus within the OT security… [Continue Reading]