Energetyka
|CS.110
IT and OT Device Security Testing
Device security testing across 3 industrial sectors - 50+ reported vulnerabilities, 17 official CVEs.
Client
IT/OT device manufacturers and operators in the mining, energy, and industrial automation sectors
Challenge
Industrial device manufacturers and operators needed independent security verification of their products - from SCADA systems and controller firmware, through energy devices, to PLCs and OT firewalls.
Approach
Penetration testing
White-box and black-box security testing of devices from the mining, energy, and industrial automation sectors.
Firmware and hardware analysis
Device decomposition, embedded software analysis, and non-volatile memory data extraction.
Protocol fuzzing
Systematic testing of the communication protocol stack to identify bugs - including the DLMS/COSEM protocol of smart meters.
Reporting and CVE
Vulnerability documentation with CVSS scoring, reports to manufacturers, and official CVE registration.
Results
Over 50 reported vulnerabilities
17 official CVEs (Common Vulnerabilities and Exposures)
5 bugs in the DLMS/COSEM protocol stack of smart meters
Discovery of a vulnerability enabling meter freeze with a single 22-byte data frame
Identification of critical flaws: remote code execution, memory leak, command injection with root privileges
Related case studies
CS.114
Physical Security Audit of a Transmission Operator's OT
Physical security assessment of transmission facilities in the context of hybrid threats - at the intersection of physical security and ICS/SCADA systems.
CS.113
Comprehensive OT Technology Network Security Audit
Multi-phase TAN audit of an energy operator - from IT/OT segmentation testing to physical access attempts and retesting within 90 days.
CS.117
OT Security of Renewable Energy Farms
OT security assessment of distributed wind and photovoltaic farm infrastructure.
We'll discuss scope, methodology, and timeline.
Free consultation, no strings attached.