Welcome! Please comment and leave me a note telling me what you like and what you'd like to see more of. Sign up to my RSS Feed!
SCADA: The Power Grid Saga
In an excellent report published today in the USA Today, Steve Reilly wel-researched work gives examples of just how big the risk from unsecured SCADA devices is.
As I wrote in 2009, in my article ‘The Biggest Hole of It All‘, our infrastructure, that is to say the foundations on which our way of life depends, are highly insecure.
For example, Mr. Reilly describes that in the Power Grid area alone, the Department of Homeland Security (DHS), reported more than 151 ‘cyber incidents’, representing a 36% increase over the previous years’ and an astonishing 487% increase over 2012.
The article mentions a 2011 attack on a small electricity co-op in Texas. What is really telling are the words (emphasis mine)
…CEO R.B. Sloan shared his surprise with the utility’s board of directors.”
Why surprise, you ask?
It seems that the CEO thought the hackers would aim for ‘something else’ to ‘make a bigger impact’. Is that not another occurrence of the Ostrich Syndrome?
It is amazing that over two years after I wrote my post The SCADA Scandal, that the problem still exist. Nay, it grows larger, seemingly daily.
In a short but succinct post below, which was first posted here and is graciously made available to readers of this blog, Mourad explains:
Italian security researcher recently revealed details of several vulnerabilities in the system supervisory control and data acquisition (SCADA) from multiple vendors. Luigi Auriemma (site no longer available) has released details and proof of concept code for 6 vulnerabilities affecting popular SCADA systems. Most of the vulnerabilities allow remote code execution, many of them are easy to use,” – says Luigi Auriemma. “At least three vendors have released patches, and Rockwell Automation is working on it right now.”
The affected products are:
- Beckhoff TwinCAT ‘TCATSysSrv.exe’ Network Packet Denial of Service Vulnerability
- Rockwell RSLogix Overflow Vulnerability
- Measuresoft ScadaPro Multiple Vulnerabilities
- Cogent DataHub Multiple Vulnerabilities
- AzeoTech DAQFacstory Stack Overflow
- Progea Movicon Multiple Vulnerabilities
It is amazing that we keep finding these holes daily. Forget Stuxnet and the STARS. These still exist in everyday life-support infrastructure and utilities networks we depend on for our very civilization. Until when will they be allowed to exist unmitigated?