Members using impacted Unitronics Vision or Samba PLCs are highly encouraged to apply VisiLogic version 9.9.00 to existing devices in your environment. Version 9.9.00 has incorporated security enhancements to mitigate the default configuration issues and vulnerability (CVE-2023-6448) that have enabled recent attacks/defacements against the internet connected PLC’s from the CyberAv3ngers identified in the referenced alert, (TLP:CLEAR) CISA Releases Alert on Exploitation of Unitronics PLCs Used in Water and Wastewater Systems.
According to Unitronics, among other enhancements, VisiLogic 9.9.00 provides new security features to protect networked controllers from cybersecurity threats.
- From this version of VisiLogic on, the Equipment Level cybersecurity measures described in the Unitronics’ document hosted on our website, ‘Cyber Protection—Defending your Unitronics Samba™ and Vision™ series controllers’ are mandatory.
- This version of VisiLogic requires you to change default passwords and implement complex passwords, and comprises new features to protect Vision and Samba controllers.
Relevant Resource Links:
Additional WaterISAC Posts:
- (TLP:CLEAR) Water Utility Control System Cyber Incident Advisory: ICS/SCADA Incident at Municipal Water Authority of Aliquippa (Updated November 30, 2023)
- (TLP:CLEAR) CISA Releases Alert on Exploitation of Unitronics PLCs Used in Water and Wastewater Systems
- WaterISAC Advisory: (TLP:CLEAR) CISA and Partners Confirm Additional Activity into Exploitation of Unitronics PLCs Across the U.S. Water and Wastewater Sector
- (U//FOUO) Update to IRGC Attributed Activity Targeting Unitronics PLCs (Updated December 12, 2023)
