Ot Security
The latest Ot Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
Siemens Issues Emergency Fix for SICAM 8 Flaw That Allows Malicious Firmware Installation on Power Grid Devices
On July 9, Siemens published a security advisory that will have power grid operators and critical manufacturing facilities scrambling to check their equipment: four vulnerabilities in its SICAM 8...
Rockwell Adapter's Perfect 10 Vulnerability Puts Windows Networks on High Alert
Rockwell Automation's 1715-AENTR EtherNet/IP adapter has a flaw that lets attackers take full control without a password, and it carries a perfect CVSS score of 10. The bug, designated...
Critical NGINX Heap Overflow in Hitachi Energy EMS Puts Grid Operators at Risk — What Windows Admins Need to Know
On July 7, 2026, Hitachi Energy and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory detailing a critical vulnerability in the company’s e-mesh Energy...
CISA Flags Critical API Flaws in iDirect iQ-Series Satellite Terminals Used Worldwide
The U.S. Cybersecurity and Infrastructure Security Agency has issued an urgent industrial-control advisory for ST Engineering iDirect iQ-Series satellite terminals, warning that two high-severity...
Schneider Electric Patches Credential-Stealing Vulnerability in EasyLogic T150, Saitel DP RTUs
Operators of energy grids, water utilities, and other critical infrastructure are urged to apply immediate firmware updates to Schneider Electric’s EasyLogic T150 and Saitel DP remote terminal...
CISA Flags Critical Hubbell Aclara Flaw: Unauthenticated Web Access Can Reboot OT Devices
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent industrial control systems (ICS) advisory on June 23, 2026, detailing a severe vulnerability in Hubbell's Aclara...
Patch Now: B&R Fixes Linux Kernel Flaws That Threaten OT Networks and Windows Hosts
B&R Industrial Automation has pushed out a critical security advisory that demands immediate attention from plant operators and infrastructure managers. Multiple vulnerabilities in the Linux...
CISA Warns Hitachi RTU500 Firmware Flaws Risk Critical OT Availability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has republished a security advisory from Hitachi Energy detailing critical firmware vulnerabilities in the RTU500 series remote...
Secure Tank Gauges Now: CISA Warns of Active Hacks Targeting Fuel Systems
A coalition of U.S. federal agencies has issued an urgent warning to operators of critical infrastructure: immediately secure automatic tank gauge (ATG) systems that are exposed to the internet. The...
CISA Flags Three Medium-Severity Flaws in B&R Automation Runtime—Update to 6.4 to Fix XSS and CSV Injection
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on May 21, 2026, republished an advisory originally issued by ABB, warning of three medium-severity vulnerabilities in B&R...
CISA Warns: XSS Flaw in Kieback & Peter DDC Controllers Risks HVAC Hijack
CISA published advisory ICSA-26-139-05 on May 19, 2026, warning that multiple Kieback & Peter DDC building controllers contain a cross-site scripting (XSS) vulnerability that allows...
Critical Session Hijacking Flaw in Siemens SIPROTEC 5 Relays Demands Immediate OT Action, CISA Warns
Operators of Siemens SIPROTEC 5 protection relays must urgently assess and patch their devices after the U.S. Cybersecurity and Infrastructure Security Agency (CISA) amplified a alert about a serious...