Researchers from Dragos have found that many "unlock" tools actually contain Sality malware , which turns workstations into bots for cryptocurrency mining or further password cracking.
Research from industrial cybersecurity firms has revealed that these seemingly helpful tools are frequently Trojan horses. Analysis of tools targeting 15 major vendors—including Siemens, Rockwell Automation, Mitsubishi, Omron, and ABB—found that they did not "crack" passwords through brute force. Instead, they exploited specific vulnerabilities in the PLC firmware to retrieve the password. While this may sound effective, the cost is immense. These tools are also malware droppers that silently infect your engineering workstation with a potent, peer-to-peer botnet like Sality. This malware can steal sensitive information, use your computer to mine cryptocurrency, and compromise your entire industrial network, turning your solution into a catastrophe. all plc and hmi password unlock crack v23 new