A group of experts working a startup focused on robot cybersecurity has released a free, open-source framework dubbed Aztarna that could be used find vulnerable robots that could have been exposed online or inside an industrial environment.
The team of experts works for the cybersecurity firm Alias Robotics, the
Aztarna framework was designed to find vulnerable industrial routers and robots powered by ROS (Robot Operating System), SROS (Secure ROS) and other technologies.
Aztarna works as a classic port scanning tool and compares results with a built-in database of fingerprints for industrial devices from major vendors.
The tool is able to scan most popular industrial routers, including Ewon, Moxa, Westermo and Sierra Wireless manufacturers, for known flaws and misconfigurations.
The experts found close to 9000 insecure industrial routers in a first scan, 1586 of them in Europe, most misconfigured systems were in France (63%) and Spain (54%). The largest number of industrial routers detected was in the North American countries, with poor security settings in 36% in the US and 41% in Canada.
Anyone could contribute to the project by adding more fingerprints and patterns to support new robot components.
Researchers Alias Robotics informed the owners of the vulnerable robots about their discovery.
“Overall, we conclude that
“The present study reports mainly research robots aligned with