Practical and Theoretical Attacks in the Industrial Landscape (Part 2)

This report surveys adversary tactics, techniques, and procedures for compromising a simulated industrial factory—covering attacks against HMIs, engineering workstations, and PLCs (memory and DLL manipulation, project file injection, MiTM of OPC UA/CIP, remote code execution, logic download, code hiding, and tag manipulation)—and highlights mitigations such as CIP Security and vendor hardening; it is a scenario-driven TTP and vulnerability-focused analysis rather than a description of an active compromise.