Browsing Category
Operational Technology
4 posts
Operational technology, industrial control systems, SCADA, plant networks, critical infrastructure cybersecurity, and the physical systems that keep utilities, factories, pipelines, transportation, and data centers running.
iDirect Satellite Terminal Flaws Put Link Management on the Patch List
CISA says ST Engineering iDirect iQ-Series satellite terminals running software 4.5.2.1 or earlier expose sensitive device identifiers and can be forced into reboots through weak API controls. Operators should treat the July 2 advisory as both a patch event and a management-plane exposure audit.
Daktronics Controller Flaws Put Public Digital Signs on Patch Watch
CISA is warning that flaws in Daktronics DMP-5000, VFC-DMP-5000, and DMP-8000 controller firmware could expose public display systems to root-level compromise. Operators of billboards, highway signs, venues, hospitals, and other connected displays should patch firmware, change default credentials, and verify that controllers are not reachable from the open internet.
PTC Windchill Exploits Put Manufacturing PLM Systems on Patch Clock
CISA added CVE-2026-12569, a critical PTC Windchill and FlexPLM remote code execution flaw, to its Known Exploited Vulnerabilities catalog with a June 28 deadline. The bug is being used to deploy JSP web shells against product lifecycle management systems that often sit deep inside manufacturing and engineering workflows.
Dragos EmberAI Puts AI Security Workflows Inside the Control Room
Dragos launched EmberAI, an OT-native AI assistant for industrial cybersecurity teams. The product matters because critical infrastructure defenders need AI that understands plant assets, threat groups, vulnerable equipment, and operational impact rather than treating OT security like ordinary IT alert triage.