funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Wired on hacking the electric grid

From: phester <funsec () armorfirewall com>
Date: Fri, 16 Jul 2010 03:33:32 -0400 (EDT)

On Wed, 14 Jul 2010, Gadi Evron wrote:


http://m.wired.com/dangerroom/2010/07/hacking-the-electric-grid-you-and-what-army/


A well written piece of fluffery.

His main argument boils down to security by obscurity, e.g.;


"
The fact of the matter is that it isn.t easy to do any of these things. 
Your average power grid or drinking-water system isn.t analogous to a PC 
or even to a corporate network. The complexity of such systems, and the 
use of proprietary operating systems and applications that are not readily 
available for study by your average hacker, make the development of 
exploits for any uncovered vulnerabilities much more difficult than using 
Metasploit.
"


Meanwhile, in the real world;

http://www.sophos.com/blogs/chetw/g/2010/07/15/windows-day-vulnerability-shortcut-files-usb/

"
Brian Krebs reported on his blog that the payload appears to be looking 
for content specific to Siemens SCADA software[...]
"


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: