OT Operators Slow to Update Vulnerable Remote Access Devices

Team82/Claroty analysed four critical vulnerabilities in Secomea GateManager remote-access VPNs (including RCE, off-by-one overwrite, hard-coded telnet credentials, and weak password hashing). Although Secomea issued a patched release (9.2c) and CISA published mitigations, claroty found that over 61% of publicly exposed GateManager instances remained unpatched, creating a significant risk to OT environments that could allow attackers unauthenticated access to field devices and the ability to decrypt VPN traffic.