Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Submission + - Electrical Grid Is Called Vulnerable to Power Shutdown (nytimes.com)

mspohr writes: An interesting article in the NY Times: "Two researchers discovered that they could freeze, or crash, the software that monitors a substation, thereby blinding control center operators from the power grid."
These two engineers wrote software to test for vulnerabilities in the control systems of electrical power grids which use a protocol called DNP3 to communicate with sub-stations. They first tested an open source implementation of the protocol and didn't find any problems. They were worried that their software test wasn't adequate so they started testing proprietary systems. The broke every single one of the 16 proprietary systems they tested initially and found a further 9 systems vulnerable in later testing. They were able to install malware and also found firewalls ineffective.
They reported this to the Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team, I.C.S.-C.E.R.T. and didn't get much of a response.
Scary that our electrical grid is so vulnerable and there doesn't seem to be much urgency to get it fixed. A few patches have been issued but who knows if the systems have been updated?

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Electrical Grid Is Called Vulnerable to Power Shutdown

Comments Filter:

Did you know that for the price of a 280-Z you can buy two Z-80's? -- P.J. Plauger

Working...