Unveiling the ‘Evil PLC’ Attack: Weaponizing PLCs to Breach OT Networks

New evil PLC attack weaponizes PLCs in order to breach OT and Enterprise Networks

Researchers in cyber security have developed a new attack technique which weaponizes PLCs to get a foothold on engineering workstations, and then invade operational technology (OT), networks.

Claroty’s industrial security firm has dubbed the attack \”Evil PLC\”. It affects engineering workstation software by Rockwell Automation and Emerson.

The programmable logic controller is a key component in industrial devices which control production processes within critical infrastructure sectors. In addition to automating tasks, PLCs can also be configured to initiate and stop processes, and even generate alarms.