Re: GSS warns that hackers can now destroy hardware

["Dude VanWinkle" <dudevanwinkle () gmail com>]

On 9/28/07, Joel R. Helgeson <joel () helgeson com> wrote:
> Are you scared yet?
>
> [snip]   http://www.tradingmarkets.com/.site/news/Stock%20News/653079/
>
> Global Secure Systems, the specialist IT security consultants and system
> integrators, has warned that hackers can now destroy hardware systems, as
> well as software.

> "This is what can happen to your company's hardware if a hacker gains
> access. We're not talking about a software crash - which is bad enough -
> we're talking about real physical damage," he added.
> [snip]
> Real physical damage can be done only if your system is mechanical tied to
> an unsecured computer subsystem.
>
> This is so naively stupid I could rant for hours...


Check out the Johnson Controls M5 "routers", They are just embedded XP
devices that are incapable of being patched. While I agree  they
should be on private networks,  I have seen many companies that dont
have adequate security (OMG! lax security? with a network? NFW!) and
machines that, even when JCI is on a private network, are plugged into
both Inet1 and the JCI backbone.

Scared yet? :-)

-JP
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.