GAI NetConsultSep 18

๐Ÿ”Ž ๐—ฉ๐˜‚๐—น๐—ป๐—ฒ๐—ฟ๐—ฎ๐—ฏ๐—ถ๐—น๐—ถ๐˜๐˜† ๐—ถ๐—ป ๐—ฆ๐—ถ๐—ฒ๐—บ๐—ฒ๐—ป๐˜€ ๐—ฆ๐—œ๐—ฃ๐—ฅ๐—ข๐—ง๐—˜๐—– ๐Ÿฑ ๐—œ๐—ฑ๐—ฒ๐—ป๐˜๐—ถ๐—ณ๐—ถ๐—ฒ๐—ฑ

Our Technical Security Audit team has identified a vulnerability in ๐—ฆ๐—ถ๐—ฒ๐—บ๐—ฒ๐—ป๐˜€ ๐—ฆ๐—œ๐—ฃ๐—ฅ๐—ข๐—ง๐—˜๐—– ๐Ÿฑ ๐—ฑ๐—ฒ๐˜ƒ๐—ถ๐—ฐ๐—ฒ๐˜€:
โš ๏ธ The USB port may allow attacks due to improper bandwidth limitation.

๐Ÿ“Œ Description:
Affected SIPROTEC 5 devices do not properly limit the bandwidth for incoming network packets over their local USB port. This could allow an attacker with physical access to send specially crafted packets with high bandwidth to the affected devices thus forcing them to exhaust their memory and stop responding to any network traffic via the local USB port. Affected devices reset themselves automatically after a successful attack. During this restart the protection function is not available.

๐Ÿ“„ The full advisory is available here: https://www.gai-netconsult.de/wp-content/uploads/2025/09/Advisory-GAINC-2025-001-1.0.pdf

โš ๏ธ Please follow the manufacturerโ€™s guidance and updates.

๐ŸŒ An overview of further advisories can be found on our website: www.gai-netconsult.de/advisories

๐Ÿ‘ Congratulations to our colleagues ๐— ๐—ฎ๐—ฟ๐—ฐ ๐—–๐˜‚๐—ป๐˜† and ๐—ง๐—ผ๐—ฟ๐—ฎ๐—น๐—ณ ๐—š๐—ถ๐—บ๐—ฝ๐—ฒ๐—น for this discovery.

#CyberSecurity #SecurityAdvisory #Vulnerability #ITSecurity #GAINetConsult #SecurityNotice

GAI NetConsultJun 13, 2025

๐Ÿ” Practical Industrial Security: Real-World Lessons from Complex HVDC Projects

Weโ€™re excited to announce that our colleague Jan Grotelรผschen (GAI NetConsult GmbH) will be speaking at the Industrial Security Conference 2025 in Copenhagen, alongside Simon Gustafson (Amprion GmbH) and co-author Stephan Beirer (GAI NetConsult GmbH).

๐ŸŽค Topic of the presentation:
Staying on course in a volatile environment: OT security in complex large-scale HVDC projects โ€“ a real-life example

https://insightevents.dk/isc-cph/sessions/staying-on-course-in-a-volatile-environment-ot-security-in-complex-large-scale-hvdc-projects-a-real-life-example/

โšก At a glance:

Amprion is currently implementing massive offshore grid connection projects such as BorWin4/DolWin4 and BalWin1/BalWin2. These high-voltage direct current (HVDC) lines span up to 380 km and deliver 5.8 GW of power per project โ€“ enough to supply electricity to nearly 6 million people.
In this presentation, the speakers, who are largely responsible for the specification and monitoring of the implementation of OT security for this HVDC project, will present the projects itself and report on the cyber security challenges and lessons learnt.

๐Ÿ” Key OT Security Challenges Covered:
โ€ข Dynamic regulation: Adapting to evolving frameworks like NIS-2, RCE, CRA โ€“ even mid-project
โ€ข Technology vs. longevity: IT/OT convergence meets decades-long system life cycles
โ€ข Managing uncertainty: Constant change in technologies, requirements, and stakeholders

๐Ÿ“Œ This session provides real-world insights into securing critical infrastructure under real conditions โ€“ including what worked, what didnโ€™t, and how lessons learned are shaping better security strategies.

๐Ÿ”— More about the industrial security conference: https://www.linkedin.com/company/industrial-security-conference-cph/posts/?feedView=all

#OTSecurity #CriticalInfrastructure #HVDC #CyberSecurity #EnergyTransition #ICSCPH #GAINetConsult #Amprion #NIS2 #CRA #IndustrialSecurity