Tuesday 26 May 2026 13:25:36 GMT+02:00

Netcrook

HomeManifesto
News
Corporate Security IncidentsCloud, SaaS & Identity SecurityIndustrial Cybersecurity & Critical InfrastructureCyber Intelligence, TrendsAI Security & Agentic SystemsCyber Intelligence & Threat TrendsCyber WarfareCyber Warfare & Nation-State OperationsCyber CriminalityBreaches & Data LeaksCybercrimeMalware & BotnetsRansomware & ExtortionSecurity Awareness & Social EngineeringLegal PolicyLegal, Policy & Government CybersecurityPrivacy, Regulation & ComplianceTechnology, InnovationTechnology, Innovation & Digital InfrastructureVulnerabilities Patch ManagementResearch, Exploits & Offensive SecurityVulnerabilities & Patch Management
Techcrook
Tutte le tecnologieIdentita e accessoFirewall e reteBackup e archiviazioneEnergia e continuitaPrivacy e sicurezza fisicaLaboratorio e prototipazioneStampa e tracciabilitaTecnologia quotidiana
Geocrook
AfricaAsiaEuropeMiddle EastNorth AmericaOceaniaSouth America
WikicrookTeamAppContact
EnglishItalianoArabic
Industrial Cybersecurity & Critical Infrastructure

PLC Peril: OPSWAT Uncovers Critical Flaws Threatening Industrial Control Systems

16 January 2026 11:32Industrial Cybersecurity & Critical InfrastructureAsiaSHADOWFIREWALL

Subtitle: Researchers reveal severe vulnerabilities in Delta DVP PLCs, exposing industrial automation to authentication bypass and sabotage risks.

Picture this: a manufacturing line grinds to a halt, not because of a mechanical failure, but due to a silent, invisible attack exploiting flaws deep inside its digital brain. This isn’t a hypothetical scare tactic-it’s the chilling reality facing thousands of industrial sites after OPSWAT’s Unit 515 uncovered a cluster of critical vulnerabilities in Delta Electronics’ DVP programmable logic controllers (PLCs), the very devices that quietly choreograph the world’s factories and infrastructure.

Fast Facts

  • Four major CVEs (CVE-2025-15102, -15103, -15358, -15359) found in Delta DVP-12SE11T PLCs.
  • Flaws include authentication bypass, information exposure, denial-of-service, and out-of-bounds memory write.
  • Vulnerabilities affect firmware versions earlier than 2.16; Delta released patches in December 2025.
  • Exploitation could allow unauthorized access, system disruption, or unpredictable device behavior.
  • Delta and OPSWAT urge urgent patching and strict network segmentation to protect industrial environments.

The findings, published by OPSWAT’s elite Unit 515, stem from an August 2025 security audit targeting the Delta DVP-12SE11T-a PLC widely deployed in process automation. Their investigation revealed a perfect storm of vulnerabilities: two authentication bypasses, a denial-of-service flaw, and a critical out-of-bounds memory write, all lurking in devices running outdated firmware.

The most alarming of the bunch-CVE-2025-15103-carries a near-maximum CVSS score of 9.8, indicating a trivial path for attackers to sidestep authentication and potentially hijack industrial processes. Another flaw, CVE-2025-15102, enables password authentication bypass, while CVE-2025-15359 could let intruders write outside the intended memory boundaries, undermining both device stability and safety. Even the “lesser” CVE-2025-15358, a denial-of-service bug, could force factories offline until manual recovery is performed.

Typically, PLCs are the unsung heroes of industrial control systems (ICS), executing logic that keeps power grids humming, water plants flowing, and assembly lines moving. But their strategic importance makes them irresistible targets for cybercriminals and nation-state actors alike. “Weaknesses in a single PLC can snowball into broader operational and safety risks,” OPSWAT warns.

Delta Electronics, to its credit, responded swiftly, collaborating with OPSWAT on triage and remediation. By late December 2025, official patches were released. Still, the advisory is sobering: organizations must not only patch but also isolate PLCs from business networks, deploy firewalls, and vigilantly monitor for suspicious activity. Exposure to the wider internet remains a cardinal sin in ICS security.

The takeaway? In the interconnected world of operational technology, patching alone is never enough. A layered, defense-in-depth strategy-continuous monitoring, network segmentation, and strict access controls-is essential to prevent these digital saboteurs from turning the lights out on critical infrastructure.

As industrial automation surges, the security of its digital backbone is only as strong as its weakest link. The latest Delta PLC revelations serve as a stark reminder: in the world of ICS, complacency is the enemy, and vigilance is the price of resilience.

WIKICROOK

  • PLC (Programmable Logic Controller): A PLC is a rugged computer that automates and controls industrial machinery and processes in factories, plants, and other industrial environments.
  • Authentication Bypass: Authentication bypass is a vulnerability that lets attackers skip or trick the login process, gaining access to systems without valid credentials.
  • Denial: Denial in cybersecurity means making systems or services unavailable to users, often through attacks like Denial-of-Service (DoS) that flood them with traffic.
  • Out: Out-of-Band Verification confirms identity using a separate channel, like a phone call or text, to enhance security and prevent unauthorized access.
  • Firmware: Firmware is specialized software stored in hardware devices, managing their core operations and security, and enabling them to function properly.
SHADOWFIREWALL
AuthorSHADOWFIREWALL

Industrial Cybersecurity & Critical Infrastructure