Your Smart Factory’s Secret Password: Hacked! Major Vulnerability in mySCADA myPRO

Attention mySCADA users: If your myPRO version is pre-8.31.0, update ASAP! A hard-coded password vulnerability could allow attackers to remotely execute code. Don’t let hackers RSVP to your control systems—secure them now!

3P
Published: July 2, 2024 2:21 pmAdded: July 2, 2024 at 7:37 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like mySCADA’s myPRO product got caught with its pants down, using a hard-coded password. It’s like leaving the keys to your digital kingdom under the welcome mat!

Key Points:

  • Critical vulnerability with a CVSS v4 score of 9.3
  • Enables remote code execution with low attack complexity
  • Affects myPRO versions prior to 8.31.0
  • Reported by Nassim Asrir through Trend Micro Zero Day Initiative
  • Mitigation involves updating to the latest version and implementing network security measures

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?