A penetration tester has gained access to an operational technology (OT) network. The tester discovers a programmable logic controller (PLC) that manages a critical manufacturing process. By interacting with the PLC, the tester can directly modify the data values that dictate the machinery's functions, such as motor speeds and valve positions. Which attack is being performed if the tester alters these values to cause operational failure?
Register manipulation is an attack that involves altering the values in the memory registers of a control device like a PLC. These registers hold critical parameters that dictate the physical process. By modifying them, an attacker can cause machinery to operate outside of safe limits, leading to damage or disruption. A replay attack involves resending captured legitimate traffic, not actively changing parameters. A CAN bus attack is specific to vehicle networks, and a denial-of-service attack aims to make a system unavailable rather than manipulating its physical function in this manner.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is register manipulation in industrial systems?
Open an interactive chat with Bash
How do safety features in industrial systems usually work?
Open an interactive chat with Bash
What cybersecurity measures can prevent register manipulation?