The global site of the UK's leading magazine for automation, motion engineering and power transmission
6 December, 2019

Product and Supplier Search

Facebook

Cyber-flaw could allow hackers to halt Rockwell drives

01 April, 2019

US cyber-researchers have found a software flaw in some Rockwell Automation variable-speed drives that could be exploited to manipulate the drive’s operation or to stop it remotely. The “denial of service” bug in PowerFlex 525 drives with embedded Ethernet I/P could allow a cyber-attacker to crash the Common Industrial Protocol (CIP) so that it will not accept any new connections. The current connections would, however, remain active, allowing potential attackers to take control of the drive.

The flaw was discovered last July by researchers at Applied Risk. They informed Rockwell which has since issued a firmware patch to tackle the flaw. Applied Risk has now published a report on its findings, and the US Department for Homeland Security has issued an advisory notice via its National Cybersecurity & Communications Integration Center (NCCIC). The advisory warns that successful exploitation of the vulnerability “could result in resource exhaustion, denial of service, and/or memory corruption”. It adds that it would require a “low” skill level to exploit. However, there are no known incidents that have exploited the weakness.

The flaw would allow an unauthenticated user to send a sequence of packets to crash the CIP network stack. This would create an error in the control and configuration software which would disconnect when the connection pool was exhausted. It would then not be possible to initiate a new connection to the device, preventing legitimate users from recovering control. If the attacker keeps their connection open, they could continue to send commands, and the only way for the genuine user to regain access would be to do a power reset.

The firmware update for the drives can be downloaded from Rockwell’s Web site. The company has also issued a security advisory about the vulnerability for registered customers.

The potential cyber-security flaw was detected in Rockwell Automation's PowerFlex 525 variable-speed drive

Although this is one of the first problems of its type to be discovered in an variable-speed drive, security analysts regularly report potential weaknesses in industrial equipment. So far this year, The US Government’s ICS-CERT (Industrial Control Systems Computer Emergency Response Teams) service has issued more than 50 cyber-security advisories for industrial equipment and software, including items from ABB, Advantech, Aveva, Delta, Emerson, Horner, Johnson Controls, Mitsubishi, Moxa, Omron, OSIsoft, Pepperl+Fuchs, Phoenix Contact, Pilz, Schneider, Siemens and Yokogawa.




Magazine
  • To view a digital copy of the latest issue of Drives & Controls, click here.

    To visit the digital library of past issues, click here

    To subscribe to the magazine, click here

    To see the latest Products & Services Directory, click here

     

Exhibition

Birmingham 2020The next Drives & Controls Exhibition and Conference will take place in Birmingham, UK, from 21-23 April, 2020. For more information on the event, visit the Show Web site

Poll

"Do you think that robots create or destroy jobs?"

Newsletter
Newsletter

Events

Most Read Articles