The offensive security team here at Digital Bond spends a lot of our time attacking various control system components, from field device to SCADA server to HMI and everything in between.  A big part of these attacks is network analysis.  We examine the protocols being used to control the targeted systems, and in the case [...]

Patrick Miller, previously with WECC, is now the Technical Director, NERC CIP Practice at ICF International.
Jake Brodsky, Bob Radvanovsky and some others from the SCADASEC list are organizing “The Gathering” on May 14-15 at the Marriott Courtyard Chicago Ohare. It will be interesting to hear what comes from this unstructured brainstorming, show and tell, hack [...]

Yesterday, I wrote a quick introduction to the Win7/2008R2 firewall.  Today, I will be discussing two really great Windows Firewall features that were updated but first I need to clarify something.  The features discussed within this and future firewall posts are specific to Win2008 R2 and not Win2008. This is because Win2008’s firewall feature set [...]

Control Microsystems has a white paper with an interesting example of integrating Longwatch’s video surveillance into their ClearSCADA system. The two systems communicate using OPC.
The Obama Administration published an overview of the 12 Initiatives in the Comprehensive National Cybersecurity Initiative. This document was actually drafted in the waning moments of the Bush administration.
Add Intel to [...]

This week Control Microsystems Inc. and Longwatch Inc. announced the ability of ClearSCADA to provide video surveillance. At remote sites, video from the cameras is stored locally and when motion is detected an alert is raised and a video clip is sent to the ClearSCADA system. The video clip contains a short amount of video [...]

Patrick Miller, Sr. Compliance Engineer, Security for WECC [basically Mr. CIP at WECC] announced he is leaving WECC for an as yet to be named consulting firm. Patrick was also a key founder of EnergySec before joining WECC and has a record of getting things done. Good luck to Patrick and congrats to the company [...]

Nate Lawson reverse engineers a smart meter that PG&E partially installed at his house [ht: Matt Franz, @frednecksec]. Actually he reversed the same radio module in a water meter he was able to buy on Ebay.
The UK Centre for the Protection of National Infrastructure [CPNI] has posted nine control system security guideline documents. Past CPNI [...]

This past Wednesday, SANS and CWE released their 2010 top 25 programming errors list. The list contains many errors that are present in control systems both developed recently or a few years back. For example, Daniel Peck of Digital Bond wrote a paper showing what can happen when error #8 is introduced into [...]

Another week, another Rockwell Automation vulnerability disclosed. “Jeremy Brown has discovered a vulnerability in RSLinx, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to a boundary error when processing EDS files.” Will a sustained trickle of vulns change RA’s approach? RA’s software is not any worse [...]

I’m a week or two late on this, but I think that the community as a whole has paid far too little attention to the advisory released a few weeks ago by the folks at C4/CERT, and the response to them by Rockwell. Full disclosure, I have not personally verified these findings [...]