Modbus.TCP.Unauthorized.Read.Request.PLC
Description
This indicates that an unauthorized Modbus client attempted to read information from a PLC or other device.
Modbus TCP is a protocol often found in SCADA networks where it is used for process control. Since Modbus does not require any authentication, an attacker with network access can issue read requests to the PLC device.
Affected Products
PLCs and Modbus TCP servers.
Impact
Information Leakage.
Recommended Actions
Limit network access to PLC devices.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |