Modbus.TCP.Unauthorized.Read.Request.PLC

description-logoDescription

This indicates that an unauthorized Modbus client attempted to read information from a PLC or other device.
Modbus TCP is a protocol often found in SCADA networks where it is used for process control. Since Modbus does not require any authentication, an attacker with network access can issue read requests to the PLC device.

affected-products-logoAffected Products

PLCs and Modbus TCP servers.

Impact logoImpact

Information Leakage.

recomended-action-logoRecommended Actions

Limit network access to PLC devices.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)