Industrial Cybersecurity
The latest Industrial Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
Everon OCPP flaws let attackers hijack EV chargers via WebSocket bypass
A newly discovered cluster of high-severity vulnerabilities in Everon's Open Charge Point Protocol (OCPP) backends has exposed a significant portion of the global electric vehicle charging...
MELSEC iQ-F FX5 OT Security Crisis: ENET/IP & EIP UDP Flood Vulnerabilities Exposed
Mitsubishi Electric has issued a critical security alert revealing multiple high-impact denial-of-service vulnerabilities in its MELSEC iQ-F Series programmable logic controllers, specifically...
CISA Warns of Critical Unauthenticated Access Flaw in Labkotec LID-3300IP Ice Detectors (CVE-2026-1775)
A critical vulnerability in industrial ice detection systems has prompted urgent warnings from cybersecurity authorities, highlighting the growing threat landscape for operational technology (OT) and...
CVE-2025-15577: Critical Path Traversal Threatens Valmet DNA Industrial Systems
A critical security vulnerability designated CVE-2025-15577 has been discovered in Valmet DNA Engineering Web Tools, exposing industrial control systems to unauthenticated file access attacks. This...
Siemens Urges CodeMeter Runtime Update to Patch Critical CVE-2023-38545 Vulnerability
Siemens ProductCERT has issued a critical security advisory urging users of its Desigo CC building management and Powermanager energy management systems to immediately update the third-party WIBU...
Siemens COMOS Critical Vulnerabilities: Patch Now to Prevent Industrial Espionage & Disruption
Siemens has issued a critical security advisory detailing multiple high-severity vulnerabilities in its COMOS engineering and operations platform, a cornerstone software suite used globally for...
Siemens Siveillance Webhooks Flaw: Critical Authorization Bypass Threatens Industrial Security
Siemens has issued a critical security advisory warning of a missing-authorization vulnerability in the Webhooks implementation of its Siveillance Video Management Server (VMS) platform that could...
Siemens Solid Edge CVE-2025-40936: Critical Security Patch Analysis & Windows Impact
Siemens has issued an urgent security update addressing a critical vulnerability in its Solid Edge CAD software, identified as CVE-2025-40936, which affects the PS/IGES Parasolid Translator...
CISA Warns: Unauthenticated Access in ZLAN5143D Gateways Could Let Attackers Remotely Control Industrial Systems
On February 10, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent advisory for a critical vulnerability in the ZLAN5143D serial-to-Ethernet gateway, widely used...
Yokogawa SCADA Suite Hit by 14 Vulnerabilities — CISA Urges Immediate Isolation
Yokogawa Electric’s FAST/TOOLS web‑based SCADA and HMI platform harbors 14 security vulnerabilities that can be chained to steal configuration files, hijack operator sessions, and pivot from...
CVE-2025-15080: Critical MELSEC iQ-R PLC Vulnerability Threatens Industrial Systems
A newly disclosed critical vulnerability in Mitsubishi Electric's MELSEC iQ-R programmable logic controller (PLC) family poses significant risks to industrial control systems worldwide. Designated...
CVE-2026-1301: Critical Memory Safety Bug in Open62541 OPC UA Stack
A newly disclosed memory-safety vulnerability in the widely used open-source OPC UA stack open62541 has been flagged by U.S. cybersecurity authorities as a medium-severity threat that could...