Valentine's Day present for SCADA hackers: New exploit tools
There's good news for people who love bad news about the security of industrial control systems. At the SCADA Security Scientific Symposium (S4) in Miami Beach in January, there were a host of new security vulnerabilities unearthed in popular programmable logic controllers (PLCs) and Supervisory Control and Data Acquisition (SCADA) systems, the devices and software that are used to control all manner of critical infrastructure and industrial plants. And now, one researcher is preparing a tool to demonstrate the vulnerability of another manufacturer's systems—just in time for Valentine's Day.
SCADA platforms such as those from Siemens have been the subject of concerns of Homeland Security officials and others in government and industry, even before the Stuxnet worm's impact on Iran's nuclear program demonstrated that vulnerabilities in them could be used to cause real physical damage as part of a "cyber war." But many vendors have failed to improve the security of their SCADA products. That, and a general lack of pushback from SCADA customers, was the reason for S4's Project Basecamp, a SCADA hacking project intended to demonstrate the vulnerability of some of the most common control systems in use and provide tools to help companies assess their level of risk.
- Wed, 2012-09-26 23:13
- Wed, 2012-07-11 10:14
- Tue, 2012-07-03 23:50