back to article CISA warns of security holes in industrial Advantech, Hitachi kit

This week, the US government's Cybersecurity and Infrastructure Security Agency (CISA) expanded its ever-growing list of vulnerability in industrial control systems (ICS) and critical infrastructure technology. The latest warnings flag up severe flaws in products from Advantech and Hitachi Energy, which serve both consumer and …

  1. Yet Another Anonymous coward Silver badge

    I'm assuming that following this revelation, all Japanese electronic equipment will be removed from our core telecoms infrastructure ?

  2. Paul Crawford Silver badge

    The manufacturer advises organizations upgrade to version 4.0, which includes updates to the vulnerable components that remediate the issue.

    And there we have a key problem - how much do you want to bet that 4.0 is not exactly backwards compatible with versions 1-3?

    And so you have a choice: replace the firmware to fix the security bugs, or leave it so you don't have the high risk of operational bugs appearing as a result. If they did software engineering properly they would have bug-fixed updates of earlier versions so you could just fix the one issue at a time.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like