English
The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service. Internet threat level: 1

SCADA exploits circulating

Roel
Kaspersky Lab Expert
Posted March 23, 18:23  GMT
Tags: Stuxnet, Industrial control systems
0.3
 

Ever since Stuxnet hit the news last year, there has been an increased interest in the area of industrial control systems (ICS). This has been evidenced by the fact that we've seen a recent surge in public releases of zero-day (unpatched) vulnerabilities and exploits.

Earlier this week, we saw no less than 34 unpatched vulnerabilities posted to Bugtraq. In the original article by The Register, there's also mention of a SCADA exploit pack which is currently for sale to pen-testers.

I'm against full disclosure, but these developments clearly show that there's a continued interest into these systems that are in charge of critical infrastructure -- from traffic lights to power grids to airport control systems.

This field has some very interesting challenges. Reliability/uptime is the core focus in ICS/SCADA and security has been something of an afterthought.

There are companies out there who have uptimes of 28(+) years. That means they're running an OS developed some 30 years ago. This also means that unless something changes it could take another decade (or two) before serious security changes are made.

Industrial Control Systems are right on the edge of the private-public line. Critical infrastructure is run by companies who serve the public. For many of these businesses, government regulation is driving their security effort.

Governments aren't necessarily known for moving quickly, but the main push for better ICS/SCADA security will have to come from them.

Hopefully the media coverage around these vulnerabilities will help drive the issue.


Comments

If you would like to comment on this article you must first
login


Bookmark and Share
Share

Analysis

Blog