A bit from last week and this week.
- Eric Murphy completed his six part overview of the OPC DA protocol. In the series he gives a section by section synopsis. Faster than reading the whole document, but still gives the reader a lot of detail. Eric create a post with links to all six parts!
- Wurldtech announced a cooperative agreement with Tegron and FluidIQ. Looks like they will provide security services to those organizations. This appears to be a result of Bryan Singer leaving FluidIQ for Wurldtech.
- The free DHS/INL Intro to SCADA Security Courses will be taught on Jan 14-15, prior to the SANS SCADA Security Summit, in New Orleans. (The summit costs $1,645) The event and courses are good for those who have not attended an event like this or PCSF before, but it looks highly repetitive in speakers and sessions of the previous two SCADA Security Summits.
- The next SCADA security presentation at a hacker event is at the Chaos Communication Conference Decmeber 27th to 30th in Berlin. Hacking SCADA may be a repeat of the presentation at HITB Malaysia. The slides for that are at the link and are a nice intro to SCADA security. (hat tip: Stephan Beirer)
- FIRST has a note on fuzzing DNP3 using Beyond Security’s BeStorm. There is a free 30-day trial on this tool, and we tried it a few months back. If I remember correctly it also fuzzes Modbus TCP and has a GUI to create a fuzz for protocols not supported by BeStorm. It didn’t make it in our tackle box.
- Interesting article about a man charged charged with “intentionally caused(ing) damage without authorization to a protected computer,according to Keehn’s Nov. 15 indictment. He did this by installing unauthorized software on the TCAA’s Supervisory Control and Data Acquisition (SCADA) system, the indictment states.” (hat tip: Brian Mast on the Australian SCADA List)