Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Security

+ - Software Targeted by Stuxnet Still Full of Holes->

Submitted by
itwbennett
itwbennett writes "'It's easy to find a vulnerability in WinCC. You can just point at it,' said Sergey Gordeychik, CTO of Moscow-based Positive Technologies, referring to the more than 50 vulnerabilities he and his team have found in WinCC, a type of SCADA system. At Siemens's request, Gordeychik had canceled a Defcon presentation this summer to give the company time to patch WinCC. On Thursday, however, Gordeychik, along with colleague Gleb Gritsai, presented an overview of the research: 'Gritsai showed how, when an industrial system operator is using the same browser to access both the open Internet and WinCC's web interface, a vulnerability can be exploited to obtain login credentials for the back-end SCADA network.'"
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Software Targeted by Stuxnet Still Full of Holes

Comments Filter:

I go on working for the same reason a hen goes on laying eggs. -- H.L. Mencken

Working...