34 SCADA vulnerabilities revealed
Posted on 22 March 2011.
It is safe to say that the existence of SCADA (supervisory control and data acquisition) systems was a fact unknown to many before the advent of the Stuxnet worm, and not many security researchers were interested in analyzing the code of the software that monitors and controls the hardware involved in industrial, infrastructure, or facility-based processes.

But things have changed. As industrial cyber espionage becomes an every-day occurrence and attacks on infrastructure or facilities critical to a country are practically expected, security experts have realized that research concerning that type of software might, after all, be rewarding.

Italian researcher Luigi Auriemma is one of those, and by his own admission, he wasn't familiar with SCADA before starting an experiment that had him searching for vulnerabilities in a number of well-known server-side SCADA software: Siemens Tecnomatix FactoryLink, Iconics GENESIS32 and GENESIS64, 7-Technologies IGSS, and DATAC RealWin.

He disclosed the vulnerabilities he found and the proof-of-concept code related to each of them on Monday on the Bugtraq mailing list.

“SCADA is a critical field but nobody really cares about it,” he revealed to The Register. “That's also the reason why I have preferred to release these vulnerabilities under the full-disclosure philosophy.”

According to him, most of them can be leveraged to execute a remote code execution on SCADA software-run machines with an Internet connection. Others allow attackers access to stored data, and in one case, to even interfere with the hardware that uses the software in question.

Other security researchers have also been looking into SCADA software vulnerabilities. Gleg, a Russian security firm, offered quite recently an exploit pack for SCADA systems for sale. Called Agora SCADA+, the kit contains 22 modules that incorporate exploits for eleven zero-day vulnerabilities.






Spotlight

New Zeus variant targets users of 150 banks

Posted on 19 December 2014.  |  A new variant of the infamous Zeus banking and information-stealing Trojan has been created to target the users of over 150 different banks and 20 payment systems in 15 countries, including the UK, the US, Russia, Spain and Japan.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Mon, Dec 22nd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //