SCADA

Is the nation ready to protect critical infrastructure?

Is the nation ready to protect critical infrastructure?

Whether it is defending against cyber terrorism, cyber warfare, or malicious hackers, it seems clear that securing our countries critical infrastructure must be a nationwide priority.

Natural gas pipeline companies under siege, DHS arm warns

By

A sustained attack against the nation's natural gas pipelines, apparently orchestrated by the same malicious party, is proving difficult to quell.

Anonymous says power grid concerns are U.S. gov't spin

By

The head of the National Security Agency is warning that Anonymous may be developing capabilities to target the U.S. power grid, but members of the hacktivist collective called such claims nothing more than fear mongering.

New cyber security bill is bipartisan, but has its critics

By

A new version of a federal law designed to protect the nation's critical assets is toned-down from previous cyber security proposals, but business and privacy leaders have concerns.

Energy Department to analyze power grid cyber threats

By

The proposal is helpful, but still doesn't answer the question: who to call when an attack happens.

MIT researchers suggest power grid security oversight

By

While a number of entities have a stake in maintaining the cyber security of the U.S. electric grid, no single organization is currently responsible for overseeing protection across all aspects of grid operations.

Illinois water pump failure not a cyberattack

By

An Illinois water utility pump failure may have been an accident caused by an employee -- not the work of foreign hackers.

Water utilities in Illinois, Houston reportedly hacked

By

Hackers reportedly breached the systems of a company that makes supervisory control and data acquisition (SCADA) systems, used to manage operations at critical infrastructure facilitates, and stole customer usernames and passwords.

Part Two: Duqu: father, son, or unholy ghost of Stuxnet?

Part Two: Duqu: father, son, or unholy ghost of Stuxnet?

Three U.S. Air Force information security experts, independent of their role in the military, studied the Duqu trojan, and you might be surprised by what they found. This is the second article in a two-part series that examines the sophisticated threat that everyone is talking about.

Duqu trojan spreads through 0-day Microsoft bug

By

A piece of malware that has drawn comparisons to the notorious Stuxnet worm is using an unknown Windows kernel vulnerability to infect its targets.

The government has it wrong on Anonymous and critical infrastructure

By

When it comes to stopping individuals who want to compromise industrial control systems, the Anonymous group is certainly not Enemy No. 1.

New malware appears carrying Stuxnet code

By

A sibling of one of the most complex and potentially menacing computer worms ever created has impacted roughly five Europe-based manufacturers of industrial control systems, security researchers said Tuesday.

Sponsored video: Pan Kamal of AlertEnterprise on SCADA

By

Fresh off the Stuxnet attack, critical infrastructure environments must evolve to meet the growing threat, Pan Kamal, VP of marketing at AlertEnterprise, tells SC Magazine Executive Editor Dan Kaplan.

Researcher again discloses multiple SCADA flaws

By

An Italian analyst said he spent little time finding a new batch of vulnerabilities impacting industrial control systems.

Hacking industrial control systems: Dillon Beresford press conference

By

Security researcher Dillon Beresford speaks to the press at the Black Hat conference in Las Vegas following his presentation which demonstrated how to hack into Siemens industrial control systems. Beresford specifically uncovered "replay attack" vulnerabilities in programmable logic controllers, or PLCs, which are used in organizations such as power plants to automate processes. He told the media that part of his motivation for the research was to debunk conventional thinking that SCADA attacks require deep pockets. This week, ICS-CERT issued an advisory warning of the bugs in the Berlin-based Siemens products.

Black Hat: Insulin pumps can be hacked

Black Hat: Insulin pumps can be hacked

By

A Type 1 diabetic said Thursday that hackers can remotely change his insulin pump to levels that could kill him.

Flexible stance: SC Canada infosec pro of the year

Flexible stance: SC Canada infosec pro of the year

By

Mark Fabro has successfully married tech knowledge and C-level chops to help elevate his role -- and awareness around SCADA security -- to the next level.

Stuxnet: The way we were

The way we were is too much like the way we are: There is no way I will ever say there is no way.

Security concerns of computer automation and control: Where to start?

Security concerns of computer automation and control: Where to start?

A four-step industry model can be effective in defending control systems against adversaries.

Still scared for SCADA?

The sky hasn't fallen, but we can never again write off infrastructure attacks as science fiction.

Stuxnet: Paradigms lost and paradigms regained

The assumption that the next Stuxnet will be somehow similar but not the same could be seriously misleading.

Researchers pull their SCADA talk over exploit fears

By

A scheduled talk on vulnerabilities in industrial control systems, which operate things like power plants and oil refineries, was shelved Wednesday after the affected vendor was unable to develop a working fix in time.

Industrial control systems at risk, ICS-CERT warns

By

Software products used to manage critical infrastructure facilities contain a vulnerability that could allow an attacker to take control of affected systems, the ICS-CERT warned.

"Stars" worm targets systems in Iran, official says

By

On the heels of the Stuxnet worm, Iran officials say they have discovered a new piece of malware also designed to sabotage government systems.

Wind power company disputes alleged SCADA hack

By

A major U.S. energy supplier has found no evidence of breach despite claims by a former employee that he hacked into the company's New Mexico wind turbine facility as revenge for being fired.

Life after Stuxnet: Infrastructure safeguards

Life after Stuxnet: Infrastructure safeguards

By

The cyberattack last summer on Iran's nuclear facilities has upped the ante for decision-makers in charge of critical infrastructure and enterprise networks, reports Greg Masters.

U.S. government warns of SCADA flaws

By

The U.S. government's ICS-CERT has issued alerts for four software products used to control hardware appliances at industrial facilities.

Cyberwarfare dismissed! OECD speaks, others retweet

Refuting the recent downplay of cyberwarfare as a threat with well-thought analysis.

Stuxnet, Farewell Dossier, Cyberwar and WikiLeaks Wrapup

Why recent Wired and New York Times' Stuxnet cyberwarfare reporting doesn't shock Cybercrime Corner readers. A quick summary of relevant cyberwar/Stuxnet articles and preventive measures for review.

Stuxnet's persistent legacy: Cybersecurity is blended security

Were cybersecurity and Stuxnet involved with Iranian Prof. Shahriari's recent assassination? What are the game-changing physical security considerations for chief information officers?

Sign up to our newsletters

POLL