The BlackEnergy malware targeted SCADA HMI systems may be exploiting a recently patched flaw in the Siemens SIMATIC WinCC software to compromise some systems. The malware is highly modular and not all functionality is deployed to all victims. BlackEnergy has been used by threat actors in the wild to compromise HMI (human-machine interface) systems, the Industrial Control System Cyber Emergency Response Team (ICS-CERT) has reported. The security of SCADA and ICS systems is a pillar of any cyber strategy.”]
Source: http://securityaffairs.co/wordpress/31019/malware/blackenergy-exploits-wincc-flaws.html