Omron Patches PLC, Engineering Software Flaws Discovered During ICS Malware Analysis

Japanese tech firm Omron has fixed security vulnerabilities in its programmable logic controller (PLC) and engineering software, following their discovery by security firm Dragos. The study revealed a state-sponsored attack framework known as Pipedream had targeted Omron products. The issues included a high-severity flaw in Omron’s CJ/CS/CP series PLCs and two medium-severity vulnerabilities in its engineering software.