[ISN] Hackers tap SCADA vuln search engine

From: InfoSec News <alerts_at_private>
Date: Wed, 3 Nov 2010 00:12:33 -0600 (CST)

By Dan Goodin in San Francisco
The Register
2nd November 2010

A search engine that indexes servers and other internet devices is 
helping hackers to find industrial control systems that are vulnerable 
to tampering, the US Computer Emergency Readiness Team has warned.

The year-old site known as Shodan makes it easy to locate 
internet-facing SCADA, or supervisory control and data acquisition, 
systems used to control equipment at gasoline refineries, power plants 
and other industrial facilities. As white-hat hacker and Errata Security 
CEO Robert Graham explains, the search engine can also be used to 
identify systems with known vulnerabilities.

According to the Industrial Control Systems division of US CERT, that's 
exactly what some people are doing to discover poorly configured SCADA 

“The identified systems range from stand-alone workstation applications 
to larger wide area network (WAN) configurations connecting remote 
facilities to central monitoring systems,” the group wrote in an 
advisory (PDF) published on Thursday. “These systems have been found to 
be readily accessible from the internet and with tools, such as Shodan, 
the resources required to identify them has been greatly reduced.”


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
Received on Tue Nov 02 2010 - 23:12:33 PDT

This archive was generated by hypermail 2.2.0 : Tue Nov 02 2010 - 23:23:12 PDT