Members
  • Total Members: 12811
  • Latest: nodrog
Stats
  • Total Posts: 28507
  • Total Topics: 8238
  • Online Today: 852
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: Is This SCADA Hacking Friday? (Friday, November 18, 2011)  (Read 990 times)

0 Members and 1 Guest are viewing this topic.

Pez

  • SCF VIP Member
  • *****
  • Posts: 723
  • KARMA: 116
  • Gender: Male
  • Pez
Is This SCADA Hacking Friday? (Friday, November 18, 2011)
« on: 21. November 2011., 09:44:46 »
Today’s infosec news focuses on several possible incidents of penetrations at water utility companies. Elinor Mills at C|Net posted a story on a potential compromise last week at a Springfield, Ill., water company that may have resulted in physical damage. Meanwhile Gareth Halfacree at thinq has a writeup on a potential South Houston water supply network compromise.

Questions I often hear concerning incidents like this range from “How easy is it to attack SCADA networks?” to “Are we going to see more of these types of attacks?” The answers are quite simple.

It is really no more difficult to attack a SCADA network or system than it is to attack any other system. It just takes time, certain types of knowledge, and dedicated resources for developing the attack–same as any other attack vector or target. The second question is trickier.

Certainly we may see more SCADA-based or SCADA-focused attacks in the future. Attackers tend to target systems that can be successfully compromised, and recent history has shown that these systems are at least as vulnerable as other types of networked systems. But that isn’t really the point. In my mind, the second question often morphs into “How do we know they are not already compromised and actively under attack now?”

My gut tells me that there is greater targeting and wider compromise than we know about. Why? Again, my instincts tell me that there is a lack of cyberforensics and response procedures at most of these facilities. If you do not have cyberforensic capabilities, it is kinda hard to know if you have a cyberintrusion. Does this mean that I think it is cyber-Armageddon time? No, but it is certainly prudent to evaluate our systems and ask some questions.

The point has already been proven: SCADA networks and components are susceptible to attack just like any other networked computer system, and we see them getting attacked more and more often. So what should SCADA network administrators do?

Include “cyber” in all risk management
Set up extensive penetration testing
Set up extensive counter-social engineering training
Put a SCADA-specific CERT plan and team in place
Network with law enforcement at all levels
Expect to get attacked and take appropriate countermeasures

Orginal article: Friday, November 18, 2011 at 10:49am by David Marcus
http://blogs.mcafee.com/mcafee-labs/is-this-scada-hacking-friday
Their is two easy way to configure a system!
Every thing open and every thing closed.
Every thing else is more or less complex.

Start Turfing ! http://scforum.info/index.php/topic,8405.msg21475.html#msg21475

Samker's Computer Forum - SCforum.info

Is This SCADA Hacking Friday? (Friday, November 18, 2011)
« on: 21. November 2011., 09:44:46 »




Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: Is This SCADA Hacking Friday? (Friday, November 18, 2011)
« Reply #1 on: 21. November 2011., 11:37:53 »
Quote
Questions ... “How easy is it to attack SCADA networks?” ...

...

It is really no more difficult to attack a SCADA network or system than it is to attack any other system. It just takes time, certain types of knowledge, and dedicated resources for developing the attack–same as any other attack vector or target.

Scary...  :-X

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising