The Kaspersky researchers found seven vulnerabilities, in which one was the most severe that could allow any remote attacker to execute a command on the targeted IIoT gateway
The experts at Kaspersky Lab, a global cybersecurity and anti-virus provider, have helped in identifying and patching nearly seven vulnerabilities that are previously unknown, in the industrial internet of things (IIoT) platform – ThingsPro Suite, which is intended for industrial control systems (ICS) data acquisition and remote analysis.
Out of the vulnerabilities found, some could possibly allow threat actors to get highly privileged access to IIoT gateways and perform deadly commands. The identified vulnerabilities were reported to and patched by Moxa – the platform developer.
Alexander Nochvay, Security Researcher at Kaspersky Lab, said, “Moxa is a trusted and respected brand in the industrial systems world. However, despite the company’s vast expertise and experience, its new product had a number of vulnerabilities, which shows that it is important even for industry leaders to conduct proper cybersecurity tests.”
“We call on all ICS-product developers to act responsibly, performing regular vulnerability checks, treating the security of solutions for industrial systems as an integral and essential part of development,” he added.
Threats to IIoT gateway
The security researchers at Kaspersky Lab ICS CERT conducted a preconceptual study of the solutions and tested it for vulnerabilities that could be remotely exploited. As a result, the researchers found seven zero-day vulnerabilities, in which one was the most severe that could allow any remote attacker to execute a command on the targeted IIoT gateway. One of the vulnerabilities made it possible for cybercriminals to get root privileges, allowing them the capability to change the configuration of a device.
In addition, it could be automatedly exploited, meaning that the cyber attackers can automatically compromise several number of Moxa ThingsPro IoT gateways in varied enterprises and to even possibly gain access to the organisation’s industrial networks.
ThingsPro Suite is an IIoT platform that automatically collects data from Operational Technology (OT) devices that run at the industrial facility and deliver it to an IoT cloud for further assessment.