15 severe vulnerabilities in CODESYS industrial automation software patched

Attackers could potentially shut down a power plant, create back doors and steal critical information, Microsoft researchers say

John Leonard
clock • 2 min read
15 severe vulnerabilities in CODESYS industrial automation software patched
Image:

15 severe vulnerabilities in CODESYS industrial automation software patched

Security researchers at Microsoft identified 15 vulnerabilities in CODESYS V3, the widely used hardware-independent automation software for developing and engineering controller applications.

CODESYS is used in millions of devices to implement the IEC 611131-3 standard for programmable microcontrollers (PLCs).  According to Microsoft researchers, an attack on a vulnerable device coul...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Critics furious about Microsoft-Mistral AI partnership

Legislation and Regulation

Flies in the face of the AI Act

clock 28 February 2024 • 2 min read
'Microsoft Copilot is a gimmick', says top CIO

Cloud Computing

Issues relate to connectivity and cost

clock 28 February 2024 • 2 min read
Intel splits in two, signs deal with Microsoft

Chips and Components

'We want to be the foundry for the world'

clock 22 February 2024 • 7 min read
Most read
01

'Microsoft Copilot is a gimmick', says top CIO

28 February 2024 • 2 min read
02
03
04
05

Cyber incident disrupts another UK university

25 February 2024 • 2 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Threats and Risks

US, UK, Canada seek global coalition to combat state disinformation

US, UK, Canada seek global coalition to combat state disinformation

US, UK and Canada have endorsed a framework to tackle information manipulation

clock 27 February 2024 • 3 min read
LockBit re-emerges a week after takedown

LockBit re-emerges a week after takedown

'Damage control for the LockBit brand, a show of strength'

John Leonard
clock 26 February 2024 • 2 min read
Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Documents outline the use of hardware hacking devices, including a malicious power bank designed to surreptitiously upload data into victims' systems

clock 23 February 2024 • 3 min read