■■■■■ Injecting rootkit shellcode into an industrial PLC.
Security vulnerabilities in the Schneider Electric M340. LE
Security researchers Amir Zaltzman and Avishai Wool shared their journey to hacking Schneider Electric equipment and were able to find and exploit multiple vulnerabilities in its PLCs. In their paper, “From Pass-the-Hash to Code Execution on Schneider Electric M340 PLCs,’they sharethe detailed path from MITM to successful remote code execution (RCE).
There’s one more thing: don’t connect industrial equipment to the internet.
▶️https://youtu.be/RL7vtbm03Os
📈Presentation: https://i.blackhat.com/EU-24/Presentations/EU-24-Zaltzman-From-Pass-the-Hash-to-Code-Execution.pdf
🔬White Paper: https://i.blackhat.com/EU-24/Presentations/EU-24-Zaltzman-From-Pass-the-Hash-to-Code-Execution-wp.pdf