Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×
Security

Submission + - Software Targeted by Stuxnet Still Full of Holes (itworld.com)

itwbennett writes: "'It's easy to find a vulnerability in WinCC. You can just point at it,' said Sergey Gordeychik, CTO of Moscow-based Positive Technologies, referring to the more than 50 vulnerabilities he and his team have found in WinCC, a type of SCADA system. At Siemens's request, Gordeychik had canceled a Defcon presentation this summer to give the company time to patch WinCC. On Thursday, however, Gordeychik, along with colleague Gleb Gritsai, presented an overview of the research: 'Gritsai showed how, when an industrial system operator is using the same browser to access both the open Internet and WinCC's web interface, a vulnerability can be exploited to obtain login credentials for the back-end SCADA network.'"
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Software Targeted by Stuxnet Still Full of Holes

Comments Filter:

If all the world's economists were laid end to end, we wouldn't reach a conclusion. -- William Baumol

Working...