malware

01/27/2013

Hacking into S7

Reading the ICS-CERT security alerts on a daily basis can make you despair, even though most of the vulnerabilities and attacks in and on industrial systems aren't actually world-shattering. However, a few of them do stand out - for example when the target is in use extremely often or the vulnerability  is fairly easy to exploit.

Continue reading "Hacking into S7" »

Posted at 11:22 PM in Automation & control, factory automation, Industrial Automation, Industrial Networking, malware, PLC, process automation, Regulations, Security, Siemens | | Comments (0)

|

12/19/2011

SCADA vulnerability

A week ago, security researcher Rubén Santamarta publicly announced details of multiple vulnerabilities affecting the Schneider Electric Quantum PLC Ethernet Module, and coordinated his findings with ICS-CERT. The Quantum Ethernet Module is prone to an authentication-bypass vulnerability.

Continue reading "SCADA vulnerability" »

Posted at 03:08 PM in Automation & control, Ethernet, factory automation, Industrial Automation, Industrial Networking, malware, PLC, Security | | Comments (1)

|

10/23/2011

The threat is back

Remember Stuxnet, anyone? It never became totally clear who was behind – speculations range from the CIA to Mossad to the flying spaghetti monster; at least two of these might be interested in Stuxnet's main target, Iranian nuclear facilities with neglected Windows installations. Now, parts of Stuxnet's code seem to have been recycled in a different type of malware, a trojan horse.

Continue reading "The threat is back" »

Posted at 12:02 AM in Automation & control, Automation Software, Industrial Automation, malware, Security, Web/Tech | | Comments (2)

|

02/28/2011

Safety through security

Strangely enough, many serious studies indicate that industrial networks seem to be easier to penetrate than »consumer« networks. Just try scanning the Wifi networks in or around the factory of your choice with your iPhone and log in with »1234« »autumn« or »password«. It works frighteningly often.

Continue reading "Safety through security" »

Posted at 04:55 PM in Automation & control, Automation Software, Ethernet, factory automation, Industrial Automation, Industrial Computer, Industrial Networking, malware, PLC, process automation, Safety, Security, Siemens | | Comments (2)

|

10/05/2010

Why I don’t like to write about Stuxnet

»Why don’t you write about Stuxnet?« – »Stuxnet is a must in an automation blog!«
Well… sometimes even I should take advice from readers. In this case, however, I’m not sure if I really should, at least not at the moment. Why?

Continue reading "Why I don’t like to write about Stuxnet" »

Posted at 11:52 PM in Automation & control, Automation Software, factory automation, Industrial Automation, Industrial Computer, Industrial Networking, malware, PLC, process automation, Programming, Safety, Security | | Comments (0)

|

Follow me on

Subscribe to this blog's feed

In partnership with...

Search

Categories

Recent Posts

Recent Comments

About the author

Archives