Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Submission + - Software Targeted by Stuxnet Still Full of Holes (itworld.com)

itwbennett writes: "'It's easy to find a vulnerability in WinCC. You can just point at it,' said Sergey Gordeychik, CTO of Moscow-based Positive Technologies, referring to the more than 50 vulnerabilities he and his team have found in WinCC, a type of SCADA system. At Siemens's request, Gordeychik had canceled a Defcon presentation this summer to give the company time to patch WinCC. On Thursday, however, Gordeychik, along with colleague Gleb Gritsai, presented an overview of the research: 'Gritsai showed how, when an industrial system operator is using the same browser to access both the open Internet and WinCC's web interface, a vulnerability can be exploited to obtain login credentials for the back-end SCADA network.'"
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Software Targeted by Stuxnet Still Full of Holes

Comments Filter:

You are in a maze of UUCP connections, all alike.