[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

First real-world SCADA attack in US

Subject: First real-world SCADA attack in US
From: jasongurtz at npumail.com (Jason Gurtz)
Date: Mon, 21 Nov 2011 16:51:02 -0500
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

> Having worked on plenty of industrial and other control systems I can
> safely say security on the systems is generally very poor.   The
> vulnerabilities have existed for years but are just now getting
> attention.

+1

Just for context, let me tell everyone about an operational characteristic
of one such system (Sold by a Fortune 10 (almost Fortune 5 ;) company for
not a small amt. of $) that might be surprising; the hostname of the
server system cannot be longer than eight characters.

The software gets so many things so very very wrong I wonder how it is
there are not more exploits!

~JasonG

Follow-Ups:
- First real-world SCADA attack in US
  - From: morrowc.lists at gmail.com (Christopher Morrow)

References:
- First real-world SCADA attack in US
  - From: jra at baylink.com (Jay Ashworth)
- First real-world SCADA attack in US
  - From: mark at amplex.net (Mark Radabaugh)

Prev by Date: First real-world SCADA attack in US
Next by Date: First real-world SCADA attack in US
Previous by thread: First real-world SCADA attack in US
Next by thread: First real-world SCADA attack in US
Index(es):
- Date
- Thread