TL;DRAI

Siemens Desigo CC patch files flaggati come malware da antivirus engines per uno script PowerShell nel patchHelper. False positive su patch ICS critiche bloccano deployment timely—segnale vendor incompatibility tra ICS tools e security engines.

Siemens is informing customers that patch files for its Desigo CC building management system are erroneously being flagged as malware by multiple cybersecurity solutions.

Desigo CC integrates HVAC, lighting, security, fire safety, power, and other building subsystems into a single open platform for centralized monitoring and control.

The industrial giant recently learned that patch files released for Desigo CC versions 7 through 9 are being detected as malicious by various antivirus engines, as confirmed by tests on VirusTotal.

Siemens says it’s working with cybersecurity vendors to address the inaccurate file classification, but it suspects that the false-positive detections are caused by a PowerShell script compiled as an executable.

The script is included in a ‘patchHelper’ shipped with Desigo CC patches. Siemens believes that file system operations, registry modifications, and execution with elevated privileges in the script are considered suspicious or malicious by security engines.

securityweek.com

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

A PowerShell script included in patch files appears to be triggering false positives by multiple security engines.

giovedì 11 giugno 2026 New tab

TL;DRAI

432 words~2 min read

Siemens is informing customers that patch files for its Desigo CC building management system are erroneously being flagged as malware by multiple cybersecurity solutions.

Desigo CC integrates HVAC, lighting, security, fire safety, power, and other building subsystems into a single open platform for centralized monitoring and control.

The industrial giant recently learned that patch files released for Desigo CC versions 7 through 9 are being detected as malicious by various antivirus engines, as confirmed by tests on VirusTotal.

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Other newsrooms on this story

Related reading

ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact

Chinese mega dam stops using Western industrial chips over security concerns

Cookie thieves caught stealing dev secrets via fake Claude Code installers

Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday

Due falle di sicurezza in Microsoft Defender: a rischio milioni di PC Windows

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Other newsrooms on this story

Related reading

ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact

Chinese mega dam stops using Western industrial chips over security concerns

Cookie thieves caught stealing dev secrets via fake Claude Code installers

Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday

Due falle di sicurezza in Microsoft Defender: a rischio milioni di PC Windows

For the 2nd time in weeks, Microsoft packages laced with credential stealer