Experts from the Kaspersky Lab have helped to identify and patch seven previously unknown vulnerabilities in the ThingsPro Suite – an industrial IoT platform, designed for industrial control systems (ICS) data acquisition and remote analysis.
According to a report by ciol.com, a few of the vulnerabilities retained the threat to allow hackers to gain highly privileged access to industrial IoT gateways. All vulnerabilities identified were reported to and patched by platform developer Moxa.
ThingsPro Suite is an Industrial Internet of Things (IIoT) platform that automatically gathers data from Operational Technology (OT) devices running at the industrial facility and submits it to an IoT Cloud for further analysis. However, as much as such platforms are useful to ease IoT integration and maintenance, they can also be dangerous, unless they are developed and integrated with adequate security concerns in mind. As such solutions work as a connecting point between IT and OT security domains, vulnerabilities found in them can potentially allow attackers to gain access to an industrial network, said the report.
Click here to read the rest of the article.