#ics
6 articles
Over the past two weeks, ZCyberNews has tracked nine articles focused on industrial control systems, with seven rated high severity and one critical. The most prominent vulnerability is CVE-2026-5726, carrying a CVSS score of 7.8. Coverage has concentrated on threats to critical infrastructure, energy, manufacturing, industrial, and utilities sectors, with reports spanning the United States, North America, and globally. The reporting period, from April 12 to April 25, 2026, also includes one medium-severity issue among the tracked CVEs.
HIGHDelta ASDA-Soft PAR Buffer Overflow Hits 7.8 CVSS
CVE-2026-5726: A stack-based buffer overflow in Delta Electronics ASDA-Soft PAR file parsing scores 7.8 CVSS and enables remote code execution via crafted PAR files.
HIGHEmail-Borne Worm Surge Targets Industrial Control Systems
A global wave of email-borne worms, driven by a single piece of malware, targeted industrial control systems (ICS) in Q4 2025, marking a significant shift in OT threats.
HIGHIndustrial Control Systems Face Rising Malware, USB Threats in Q4 2025
Kaspersky data shows malware blocked on 33.3% of industrial control system computers in Q4 2025, with internet threats and removable media as top infection vectors. The share of systems facing USB-borne threats grew to 4.1%.
HIGHIran-Linked Hackers Target ICS/SCADA Systems in Critical Infrastructure
US Gov Warns Iran-Linked Actors Are Manipulating PLCs and SCADA Systems to Disrupt Critical Infrastructure
HIGHUS Warns of Active PLC Targeting in OT Environments
Government agencies warn that programmable logic controllers remain a top target for cyber adversaries in industrial environments.
HIGHThousands of US Industrial PLCs Exposed to Iranian State-Sponsored Threat Actors
Nearly 4,000 Rockwell Automation PLCs in the US are directly exposed online, creating a significant attack surface for Iranian state-sponsored hackers targeting critical infrastructure.
Stay Updated
Get the latest cybersecurity news delivered to your inbox.