Researchers have discovered several vulnerabilities in CNC machines that could allow attackers to carry out remote attacks.
The flaws were found by a team of security researchers from the universities of Adelaide and Canterbury, who presented their findings at the Black Hat Europe 2019 conference.
The first vulnerability affects milling machines that use Stepper Motors (SMMs). These machines typically control axes using pulse-width modulation (PWM), which allows for precise movement but is also susceptible to cyberattacks.
The researchers demonstrated how an attacker can send a series of bogus pulses\\to maliciously move the machine's axis without any user interaction or intervention.
They also found another vulnerability affecting servo motors used in 3D printers and other industrial machinery, as well as CNC routers.
This flaw could be exploited to inject arbitrary code into vulnerable devices, allowing an attacker to take complete control over them.
Both vulnerabilities are particularly dangerous because they don't require physical access to the machine; all an attacker needs is network connectivity and enough knowledge about how it works.
This research highlights the importance of ensuring that CNC Machines are properly secured against malicious attacks - even those not targeting its operating system or software applications themselves! By implementing simple countermeasures such as robust authentication measures and proper firmware updates, companies can protect themselves from potential damage caused by compromised devices
.jpg)
0 Comments