Critical infrastructure gear is full of flaws, but hey, at least it’s certified

Devices used in critical infrastructure are riddled with vulnerabilities that can cause denial of service, allow configuration manipulation, and achieve remote code execution, according to security researchers.

And most of these operational technology (OT) products – which include industrial control systems and related devices – claim security certifications, some of which they did not actually have.

Read more…
Source: The Register