31 Oct '12, 12pm
500K+ control devices are vulnerable to Internet attacks. ICS-CERT recommends utilities use Shodan to audit themselves!
The researchers found the potentially vulnerable systems using the Shodan search engine and searching for control-systems-related terms such as Scada (supervisory control and data acquisition). The researchers are worried that cyber-attackers could use the search engine in a similar way as a shortcut to finding vulnerable control systems and thus threaten or attack critical infrastructure. In a recent alert , ICS-CERT says it is working with the researchers and industry partners to notify owners of the identified IP addresses. But it also recommends that control system owners and operators should audit their own systems to ensure that strong authentication and login systems are implemented, along with other defensive measures. ICS-CERT also recommends that control system operators should use search engines such as Shodan or Eripp to audit their own networks and devices to ...