2012 Articles

Anatomy of a Vulnerability: Modicon Quantum

Rubén Santamarta did a fantastic static analysis of this device's firmware here, and I won't repeat his findings here (I did that once already). In addition to having a slew of backdoor accounts, an open telnet service, and an open WindRiver RPC-Debug service open on...

read more

Basecamp 1 Week Later … Outrage?

Where is the outrage? We hoped for at least the start of outrage demanding fragile and insecure PLC's in the critical infrastructure be either fixed or replaced. Of course, we expected some aimed at us for pointing out the problem and creating tools to make it easy to...

read more

Project Basecamp “Vigilante” Hopes

While Kim Zetter's Wired article had a sensational "Vigilante" teaser headline, it was a fair accounting of the presentation at S4. And I was very pleased that she captured a couple of key quotes on the "why" of Project Basecamp and our goal of making it a...

read more

Project Basecamp at S4

This morning, at our S4 Conference, Reid Wightman gave a detailed two-hour presentation on the Project Basecamp results. Project Basecamp had six great researchers looking for vulnerabilities in six different PLC’s / field devices, and the PLC’s took a beating. There...

read more

UK CPNI Critical Controls List

The UK Government Centre for Protection of National Infrastructure (CPNI) published a list of 20 Critical Controls for Cyber Defence in conjunction with SANS. Many in the ICS world don't follow SANS, so this distribution may reach a broader ICS audience. The list is...

read more

Pike Research / Industrial Defender Report

Industrial Defender recently hired Pike Research to write a research report titled: Convergence in Automation: Systems Protection, Monitoring, Managing, and Securing Control Systems, and it's available for free with registration on the ID site. There also is a webcast...

read more

Conflicted About ISASecure Certification

Question - Can a PLC or other field device be certified as secure if lack of basic authentication allows an attacker to control a process and compromise the integrity of the PLC? Between Dillon's S7 work, Ruben's recent Modicon post and all the effort around our...

read more


OTCEP ... August 22 - 23 in Singapore

I'll be giving my OT Cybersecurity ... From Speculation To Science keynote and participating in panel discussions at the CSA's OT Cybersecurity Expert Panel event.

SoterICS Event ... Sept 19 in Antwerp, Belgium

SoterICS is celebrating their company's launch with a one-day event. I'll be giving my OT Cybersecurity ... From Speculation to Science keynote.

S4x24 ... 4 - 7 March 2024 in Miami South Beach

Save the date. For the biggest and most future focused on ICS Security Event.



2012 Articles

by | Jul 12, 2019