Siemens ICS Security Advisory Updates

Important Update on Siemens ICS Advisories

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities, users should directly consult Siemens' Security Advisories and ProductCERT resources. This shift emphasizes the importance of directly monitoring vendor resources for the latest security information.

Key Changes and What They Mean for You

This change means that users relying on CISA's updates for Siemens ICS security information will need to adjust their processes. Instead of waiting for CISA's advisories, users should:

• Regularly check the Siemens ProductCERT website for security updates.
• Subscribe to Siemens' security advisory mailing lists.
• Implement a system for tracking and responding to Siemens' security advisories.

Resources for Staying Informed

To ensure you have the latest security information, here are some essential resources:

• Siemens ProductCERT: A primary source for vulnerability information.
• Siemens Security Advisories: Official announcements of security issues and patches.