jetlib.sec » Tags » scada-systems

Feeds

133445 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

16 items tagged "scada systems"

Related tags: usa [+], tiffany rad [+], tiffany [+], smart [+], protocol application [+], power [+], plc [+], las vegas [+], jonathan pollet [+], john strauchs [+], iconics [+], genesis [+], factorylink [+], datac [+], correctional [+], chaos communication congress [+], cell doors [+], buffer overflows [+], joe cummins [+], authors [+], abu dhabi [+], warns [+], vulnerabilities [+], video [+], u.s. [+], slides [+], siemens scada [+], siemens [+], scada protocols [+], risk [+], open source tool [+], jeremy brown tags [+], jeremy brown [+], ganesh [+], exploiting [+], distribution of electric power [+], discovered [+], audio [+], scada [+]

• March 05, 2012
• 21:27

  [Video] SCADA and PLC Vulnerabilities in Correctional Facilities

   » ‎ SecDocs
  Authors: John Strauchs Teague Newman Tiffany Rad
  Tags: SCADA
  Event: Chaos Communication Congress 28th (28C3) 2011
  Abstract: Many prisons and jails use SCADA systems with PLCs to open and close doors. Using original and publically available exploits along with evaluating vulnerabilities in electronic and physical security designs, Newman, Rad and Strauchs have discovered significant vulnerabilities in PLCs used in correctional facilities by being able to remotely flip the switches to “open” or “locked closed” on cell doors and gates. This talk will evaluate and demo SCADA systems and PLC vulnerabilities in correctional and government secured facilities while recommending solutions. We figured out how to remotely hack into prisons cell and gate control systems by using publically available Siemens PLC exploits as well as creating our own. Teague and Tiffany did a walk-through a jail in the southwest, USA, saw PLCs in use, took pictures and saw prison guards accessing Gmail from the Control Room computers. We will be presenting the results of this research with John Strauchs discussing electronic and physical security vulnerabilities in modern prison design. Our research was presented at Defcon 19, Las Vegas, NV.

  Tags:  correctional scada plc tiffany john-strauchs tiffany-rad usa las-vegas chaos-communication-congress scada-systems cell-doors  

• 21:27

  [Audio] SCADA and PLC Vulnerabilities in Correctional Facilities

   » ‎ SecDocs
  Authors: John Strauchs Teague Newman Tiffany Rad
  Tags: SCADA
  Event: Chaos Communication Congress 28th (28C3) 2011
  Abstract: Many prisons and jails use SCADA systems with PLCs to open and close doors. Using original and publically available exploits along with evaluating vulnerabilities in electronic and physical security designs, Newman, Rad and Strauchs have discovered significant vulnerabilities in PLCs used in correctional facilities by being able to remotely flip the switches to “open” or “locked closed” on cell doors and gates. This talk will evaluate and demo SCADA systems and PLC vulnerabilities in correctional and government secured facilities while recommending solutions. We figured out how to remotely hack into prisons cell and gate control systems by using publically available Siemens PLC exploits as well as creating our own. Teague and Tiffany did a walk-through a jail in the southwest, USA, saw PLCs in use, took pictures and saw prison guards accessing Gmail from the Control Room computers. We will be presenting the results of this research with John Strauchs discussing electronic and physical security vulnerabilities in modern prison design. Our research was presented at Defcon 19, Las Vegas, NV.

  Tags:  correctional scada plc tiffany john-strauchs tiffany-rad usa las-vegas chaos-communication-congress scada-systems cell-doors  

• March 04, 2012
• 21:38

  [Paper] SCADA and PLC Vulnerabilities in Correctional Facilities

   » ‎ SecDocs
  Authors: John Strauchs Teague Newman Tiffany Rad
  Tags: SCADA
  Event: Chaos Communication Congress 28th (28C3) 2011
  Abstract: Many prisons and jails use SCADA systems with PLCs to open and close doors. Using original and publically available exploits along with evaluating vulnerabilities in electronic and physical security designs, Newman, Rad and Strauchs have discovered significant vulnerabilities in PLCs used in correctional facilities by being able to remotely flip the switches to “open” or “locked closed” on cell doors and gates. This talk will evaluate and demo SCADA systems and PLC vulnerabilities in correctional and government secured facilities while recommending solutions. We figured out how to remotely hack into prisons cell and gate control systems by using publically available Siemens PLC exploits as well as creating our own. Teague and Tiffany did a walk-through a jail in the southwest, USA, saw PLCs in use, took pictures and saw prison guards accessing Gmail from the Control Room computers. We will be presenting the results of this research with John Strauchs discussing electronic and physical security vulnerabilities in modern prison design. Our research was presented at Defcon 19, Las Vegas, NV.

  Tags:  correctional scada plc tiffany john-strauchs tiffany-rad usa las-vegas chaos-communication-congress scada-systems cell-doors  

• February 07, 2012
• 12:53

  [Paper] SCADA Security - Why Is It So Hard?

   » ‎ SecDocs
  Authors: Amol Sarwate
  Tags: SCADA
  Event: Black Hat Abu Dhabi 2011
  Abstract: This talk will present technical security challenges faced by organizations that have SCADA or control systems installations. The presentation will take a packet level dive into SCADA protocols and provide examples of attacks . It will also showcase examples of security controls for attack mitigation and introduce a new open-source tool to help identify and inventory SCADA systems.

  Tags:  scada-protocols open-source-tool scada-systems  

• September 20, 2011
• 11:19

  [Paper] Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters

   » ‎ SecDocs
  Authors: Jonathan Pollet
  Tags: SCADA
  Event: Black Hat USA 2010
  Abstract: SCADA Systems control the generation, transmission, and distribution of electric power, and Smart Meters are now being installed to measure and report on the usage of power. While these systems have in the past been mostly isolated systems, with little if no connectivity to external networks, there are many business and consumer issuing driving both of these technologies to being opened to external networks and the Internet. Over the past 10 years, we have performed over 100 security assessments on SCADA, EMS, DCS, AMI, and Smart Grid systems. We have compiled very interesting statistics regarding where the vulnerabilities in these systems are typically found, and how these vulnerabilities can be exploited. Of course, we can not disclose any specific exploits that will allow you to steal power from your neighbors, but we can give away enough meat in this session to expose common vulnerabilities at the device, protocol, application, host, and network layers.

  Tags:  power smart scada jonathan-pollet usa scada-systems protocol-application distribution-of-electric-power  

• May 19, 2011
• 7:58

  More Vulnerabilities Discovered In Siemens Scada Systems

   » ‎ Packet Storm Security Headlines
  More Vulnerabilities Discovered In Siemens Scada Systems

  Tags:  vulnerabilities siemens discovered siemens-scada scada-systems  

• April 16, 2011
• 21:25

  [Paper] Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters

   » ‎ SecDocs
  Authors: Joe Cummins Jonathan Pollet
  Tags: SCADA
  Event: Black Hat Abu Dhabi 2010
  Abstract: SCADA Systems control the generation, transmission, and distribution of electric power, and Smart Meters are now being installed to measure and report on the usage of power. While these systems have in the past been mostly isolated systems, with little if no connectivity to external networks, there are many business and consumer issuing driving both of these technologies to being opened to external networks and the Internet. Over the past 10 years, we have performed over 100 security assessments on SCADA, EMS, DCS, AMI, and Smart Grid systems. We have compiled very interesting statistics regarding where the vulnerabilities in these systems are typically found, and how these vulnerabilities can be exploited. Of course, we can not disclose any specific exploits that will allow you to steal power from your neighbors, but we can give away enough meat in this session to expose common vulnerabilities at the device, protocol, application, host, and network layers.

  Tags:  power smart scada joe-cummins jonathan-pollet abu-dhabi scada-systems protocol-application  

• 21:25

  [Slides] Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters

   » ‎ SecDocs
  Authors: Joe Cummins Jonathan Pollet
  Tags: SCADA
  Event: Black Hat Abu Dhabi 2010
  Abstract: SCADA Systems control the generation, transmission, and distribution of electric power, and Smart Meters are now being installed to measure and report on the usage of power. While these systems have in the past been mostly isolated systems, with little if no connectivity to external networks, there are many business and consumer issuing driving both of these technologies to being opened to external networks and the Internet. Over the past 10 years, we have performed over 100 security assessments on SCADA, EMS, DCS, AMI, and Smart Grid systems. We have compiled very interesting statistics regarding where the vulnerabilities in these systems are typically found, and how these vulnerabilities can be exploited. Of course, we can not disclose any specific exploits that will allow you to steal power from your neighbors, but we can give away enough meat in this session to expose common vulnerabilities at the device, protocol, application, host, and network layers.

  Tags:  power smart scada joe-cummins jonathan-pollet abu-dhabi scada-systems protocol-application  

• March 22, 2011
• 13:50

  U.S. Warns SCADA Systems At Risk

   » ‎ Packet Storm Security Headlines
  U.S. Warns SCADA Systems At Risk

  Tags:  warns scada risk u.s. scada-systems  

• March 21, 2011
• 13:04

  FactoryLink / Iconics GENESIS32/64 / IGSS / RealWin SCADA Issues

   » ‎ Packet Storm Security Exploits
  A very large amount of vulnerabilities have been discovered in multiple SCADA systems. These ranges from buffer overflows to denial of service to directory traversal issues and more. Systems affected include Siemens Tecnomatix FactoryLink, Iconics GENESIS32 / GENESIS64, 7-Technologies IGSS, and DATAC RealWin. Included are 34 advisories and related proof of concepts.

  Tags:  iconics genesis factorylink scada-systems buffer-overflows datac  

• 13:04

  FactoryLink / Iconics GENESIS32/64 / IGSS / RealWin SCADA Issues

   » ‎ Packet Storm Security Recent Files
  A very large amount of vulnerabilities have been discovered in multiple SCADA systems. These ranges from buffer overflows to denial of service to directory traversal issues and more. Systems affected include Siemens Tecnomatix FactoryLink, Iconics GENESIS32 / GENESIS64, 7-Technologies IGSS, and DATAC RealWin. Included are 34 advisories and related proof of concepts.

  Tags:  iconics genesis factorylink scada-systems buffer-overflows datac  

• 13:04

  FactoryLink / Iconics GENESIS32/64 / IGSS / RealWin SCADA Issues

   » ‎ Packet Storm Security Misc. Files
  A very large amount of vulnerabilities have been discovered in multiple SCADA systems. These ranges from buffer overflows to denial of service to directory traversal issues and more. Systems affected include Siemens Tecnomatix FactoryLink, Iconics GENESIS32 / GENESIS64, 7-Technologies IGSS, and DATAC RealWin. Included are 34 advisories and related proof of concepts.

  Tags:  iconics genesis factorylink scada-systems buffer-overflows datac  

• January 24, 2011
• 21:25

  [Audio] Exploiting SCADA Systems

   » ‎ SecDocs
  Authors: Jeremy Brown
  Tags: SCADA
  Event: DEFCON 18
  

  Tags:  audio scada exploiting jeremy-brown-tags scada-systems jeremy-brown  

• November 02, 2010
• 0:00

  Shodan Search Exposes Insecure SCADA Systems

   » ‎ Packet Storm Security Headlines
  Shodan Search Exposes Insecure SCADA Systems

  Tags:  scada-systems  

• October 30, 2010
• 1:59

  [Video] SCADA Systems

   » ‎ SecDocs
  Authors: Ganesh Devarajan
  Tags: SCADA fuzzing
  Event: LayerOne 2007
  

  Tags:  video authors scada scada-systems  

• 1:59

  [Slides] SCADA Systems

   » ‎ SecDocs
  Authors: Ganesh Devarajan
  Tags: SCADA fuzzing
  Event: LayerOne 2007
  

  Tags:  authors ganesh scada scada-systems slides