A recent article in InformationWeek opens with the following statement: “Thousands of Internet-connected industrial control systems aren't being properly protected by firewalls or strong authentication, which leaves them at risk of being exploited by attackers.”

It cites a warning released by ICS-CERT on December 9 which warns industrial users that hackers are using SHODAN to find industrial networks that are connected to the Internet but not adequately protected. Evidently, there are lots of them. Moreover, some of the industrial equipment has even more vulnerabilities than users realized. SHODAN says it can locate any device, “From Web servers to industrial control systems to refrigerators and anything else connected to the Internet. Find devices based on city, country, latitude/longitude, hostname, operating system and IP.”

If you thought nobody could find you, think again. Scary? You bet.

More to come.

No entries

Nothing found in the guestbook.

How integrated are your maintenance, controls, and instrumentation systems?

Fully integrated

Somewhat integrated

Loosely integrated

They're not

Click Here for Poll Archives

Pillar to Post: Peter Welander's Blog

The world of IT comes to us, part 1

No entries

Industrial networking: One network for full enterprise connectivity

Application template for machine modules

WindPower 2013: Fair winds, prosperous show in Chicago

Wireless network: Field testing benefits

Control strategy for stabilizing the world's largest semi-submersible heavy transport vessel

Control platform provider helps integrate subsea and topside automation platform

New high-powered temperature controller

Industrial-grade network video recorder