Industrial Security Alert - 08.21.2012
August 21th, 2012
Siemens was notified by ICS-CERT about a vulnerability discovered by Justin W. Clarke of Cylance Inc. in RuggedCom´s Rugged Operating System (ROS). RuggedCom is a company acquired by Siemens beginning of 2012.
According to the security researcher, the vulnerability can be used to decrypt SSL traffic between an end user and a RuggedCom network device. On the 21th of August, ICS-CERT published ICS-ALERT 12-234-01 to document this case.
Specialists from Siemens and RuggedCom are investigating this issue and will provide information updates as soon as they become available.