Versions Compared

Old Version 15

changes.mady.by.user Emma Fullilove (Deactivated)

Saved on

compared with

New Version 16

changes.mady.by.user Aaron Osburn

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Announcements and statements regarding industry security news can be found here.

...

Expand
title14-Dec-2023 - Microsoft Defender XDR Security Intelligence Update affecting Geo SCADA Expert

Yesterday, Thursday December 14th, AUTOSOL has been made aware of Schneider Electric Geo SCADA Expert software components being flagged by Microsoft Defender XDR as malware. Specifically, “PUA:Win32/SpeedChecker”.

Image Added

While we are still investigating, we encourage all our customers to review their security software update process and see if it’s possible to avoid updating Microsoft Defender XDR (and the security intelligence updates) on their OT networks until we receive additional guidance from Microsoft and Schneider Electric.

Image Added

The consequences of the update result in the possible quarantine of the Geo SCADA Expert processes required for operation. Exclusion of the Geo SCADA install directories should mitigate this issue. However, recovery after automatic quarantining of the processes may be difficult without reinstalling Geo SCADA. Please see the below links for official recommendations on anti-virus exclusions on production environments:

Geo SCADA Knowledge Base: https://community.se.com/t5/Geo-SCADA-Knowledge-Base/Anti-virus-Scan-Exclusions/ba-p/278735

Geo SCADA 2022 Help File (article ‘Anti-virus Scan Exclusions’): https://tprojects.schneider-electric.com/GeoSCADAHelp/Geo%20SCADA%202020/Default.htm#ServerAdministrationGuide/Anti-virusScanExclusions.htm

This post will be updated as more information becomes available.

Expand
title10-Feb-2023 - Windows DCOM Hardening Finalized March 14, 2023

Microsoft will release its final update regarding Windows DCOM Hardening on March 14, 2023.

ACM versions 9.1 and later will automatically work with versions of Windows that have been updated with the DCOM Hardening security changes. However, ACM settings can be customized to run ACM 9.1 and later without the DCOM Hardening changes. ACM 9.1 is scheduled to be released late spring 2023.

If you have ACM 9.0.X or earlier, you can also use ACM settings to run ACM in a DCOM Hardened environment.

The instructions to do so are found here: ACM and Windows DCOM Hardening

More information from AUTOSOL about DCOM Hardening are in the post dated 31-May-2022.

Should more information be required, please contact your salesperson or AUTOSOL support.

...