Hacking Industry 4.0 With CNC Vulnerabilities presented at ICSCyberSecurityConference 2020

by Sergey Sidorov,

Summary : Industry 4.0 is leading manufacturing industry by interconnecting factories and construction offices. And CNC machines are crucial part of every manufacturing process but yet very little knowledge exists on how to analyze them during penetration testing or security assessments, how manufacturing might be impacted following CNC compromise and what are the best practices to secure them.Within the example of security issues relevant for all vendors, the talk will showcase the vulnerabilities discovered in main components of the most widespread CNC: Siemens SINUMERIK 840D. As an example, the following vulnerabilities will be described during the talk:- Stack buffer overflow in local service application;- Read/write to arbitrary memory with local driver;- Heap integer overflow in OPC UA implementation;- Stack buffer overflows in network services.All discovered vulnerabilities are already fixed by Vendor and the talk will also include recommendations of how securely organize communications between critical parts of manufacturing infrastructure and corporate network to mitigate the risks and minimize the possibility of similar vulnerabilities exploitation.