I couldn’t let the Wonderware Suitelink vulnerability go by without commenting on it, and even Jason commenting on it below won’t steal my thunder.
First, lets talk about the vulnerability from a technical perspective. It appears that this is a fairly classic example of the program allocating an amount of memory based on a request […]

Sebastian Muniz from Core Security Technologies discovered a denial of service vulnerability in the Wonderware SuiteLink service that was made public today. Here are some links:
Core Security Advisory
National Vulnerability Database
Wonderware Tech Alert (login required)
This SuiteLink vulnerability affects the same version of Wonderware InTouch that had the NetDDE problem. When we presented the NetDDE vulnerability […]

Travel to industry events can be difficult and out of reach of many budgets. And SCADA security research is going on around the world. So in the inaugural SCADA Security Scientific Symposium (S4) in Jan 2007 we offered a Virtual Attendee option. Virtual Attendees had a 3 pane display with live video, presentation slides, and […]

The guys at Neutralbit in Barcelona continue to do great work. This time it is Xavi Panadero in the lead with assistance from Lluis Mora.
During a project they identified a serious vulnerability in Wondware’s Intouch Version 8.0 that was disclosed by US-CERT today. The default configuration settings of NetDDE allow an application with Net DDE […]

First the good news. We are seeing substantial progress on patching Microsoft security vulnerabilities. Most vendors are testing applicable Microsoft patches on a timely basis and letting their clients know via support sites if the patched system continued to operate properly. Asset owners are further behind, but many have started to address deploying Microsoft patches […]

Wurldtech announced today that ABB’s AC800M industrial controller is now Level 1 Certified. I’ve blogged before on Achilles Level 1 Certification, but in brief it means a controller passed rigorous positive, negative and resource exhaustion test cases in layers 2 to 4 of the OSI model, e.g. Ethernet, IP, TCP, ICMP, ….
This certification is gaining […]

Mini-rant warning. I received a press release from Industrial Defender announcing, Industrial Defender Awarded Patent For Cyber Risk Mitigation Technology. However no where in this press release does it explain, even in broad terms, what was patented. Pure and poor marketing - - unless it works.
Somehow we are supposed to believe because some unspecified patent […]

There’s been a delay in releasing the final paper of the three part OPC Security Whitepaper series as the paper has been going through some extensive testing. Our initial testing was with a limited amount of servers as a large amount of OPC servers exist and we’ve started to build a list on the SCADApedia […]

We added two SCADApedia entries on the security features of Rockwell Software Management: FactoryTalk Security (formerly RSAsset Security) and FactoryTalk AssetCentre (formerly RSMACC). The naming is still confusing with much of the documentation, website content, and RA customer and employee base still using the old names.
The Good
There is a lot to like about the security […]

We just finished a series of SCADApedia entries on security in Rockwell Automation (RA) controllers and software applications. Remember the SCADApedia is a place for facts, so I’ll lay out some opinions and conclusions in this two part blog.

The ControlLogix PAC (powerful PLC) is a prime example of why we are fans of the simple, […]