Experience OT & IoT Cybersecurity from the Endpoint to the Air at RSAC 2024
Meet Us at RSA
Academy
Labs
Careers
Partner Login
Support
search bar

Codename I11USION: Eleven Practical Ways to Pwn Browser Based HMls in 2023

In this presentation from NoHat 2023, Andrea Palanca breaks down:

  • The evolving landscape of HMIs
  • The 11 most common risks associated with browser-based interfaces
  • Examples of real-world vulnerabilities and exploits found by the Nozomi Networks Labs team including 5 HMIs from 5 different vendors, and how these can be leveraged to impact industrial systems while simultaneously manipulating the view to deceive operators.

A recommended view to asset owners, professionals in the fields of industrial cybersecurity, IoT, and anyone interested in the future of secure industrial operations.

Watch Video

Speakers

Codename I11USION: Eleven Practical Ways to Pwn Browser Based HMls in 2023
Videos

Codename I11USION: Eleven Practical Ways to Pwn Browser Based HMls in 2023

October 31, 2023

In this presentation from NoHat 2023, Andrea Palanca breaks down:

  • The evolving landscape of HMIs
  • The 11 most common risks associated with browser-based interfaces
  • Examples of real-world vulnerabilities and exploits found by the Nozomi Networks Labs team including 5 HMIs from 5 different vendors, and how these can be leveraged to impact industrial systems while simultaneously manipulating the view to deceive operators.

A recommended view to asset owners, professionals in the fields of industrial cybersecurity, IoT, and anyone interested in the future of secure industrial operations.

In this presentation from NoHat 2023, Andrea Palanca breaks down:

  • The evolving landscape of HMIs
  • The 11 most common risks associated with browser-based interfaces
  • Examples of real-world vulnerabilities and exploits found by the Nozomi Networks Labs team including 5 HMIs from 5 different vendors, and how these can be leveraged to impact industrial systems while simultaneously manipulating the view to deceive operators.

A recommended view to asset owners, professionals in the fields of industrial cybersecurity, IoT, and anyone interested in the future of secure industrial operations.

IN PARTNERSHIP WITH
No items found.
SPEAKERS

Codename I11USION: Eleven Practical Ways to Pwn Browser Based HMls in 2023

In this presentation from NoHat 2023, Andrea Palanca breaks down:

  • The evolving landscape of HMIs
  • The 11 most common risks associated with browser-based interfaces
  • Examples of real-world vulnerabilities and exploits found by the Nozomi Networks Labs team including 5 HMIs from 5 different vendors, and how these can be leveraged to impact industrial systems while simultaneously manipulating the view to deceive operators.

A recommended view to asset owners, professionals in the fields of industrial cybersecurity, IoT, and anyone interested in the future of secure industrial operations.

Related Content

Assessing the Threat Landscape for OT & IoT Security – A Review of the Second Half of 2023

Learn more

Research Report: Assessing the Threat Landscape

Learn more

OT/IoT Security Report Executive Summary - February 2024

Learn more

Other Resources For You

Assessing the Threat Landscape for OT & IoT Security – A Review of the Second Half of 2023

Learn more

Research Report: Assessing the Threat Landscape

Learn more

OT/IoT Security Report Executive Summary - February 2024

Learn more

Research Report: Unpacking the OT & IoT Threat Landscape with Unique Telemetry Insight

Learn more

Subscribe to our newsletter

View our Privacy Policy

Take the next step.

Discover how easy it is to identify and respond to cyber threats by automating your IoT and OT asset discovery, inventory, and management.

Request a DemoWatch Demo

Subscribe

LinkedIn

Demo

PLATFORM

Platform OverviewVantageCentral Management ConsoleGuardianGuardian AirArcAsset IntelligenceThreat IntelligenceSmart PollingPSIRT

Professional Services

OverviewDesignDeploymentFast TrackOptimizationProject Management

Solutions: Business needs

Threat Detection & ResponseContinuous Network MonitoringAsset Inventory ManagementRisk & Vulnerability ManagementIoT SecurityData Center Cybersecurity

Solutions: Compliance

NERC CIPNIS2 DirectiveTSA Security Directives

Solutions: Industry

AirportsElectric UtilitiesHealthcareFederal GovernmentManufacturingMaritimeMiningOil & GasPharmaceuticalRailRetailSmart CitiesWater & Wastewater

Learn

PartnersResourcesCompanyContact UsAcademyCareersLabsLegal
© 2024 Nozomi Networks Inc. All Rights Reserved. Privacy Policy and Certifications. System Status.