Siemens industrial software targeted by Stuxnet is still full of holes

Jeremy Kirk | Nov. 9, 2012

Software made by Siemens and targeted by the Stuxnet malware is still full of other dangerous vulnerabilities, according to Russian researchers whose presentation at the Defcon security conference earlier this year was cancelled following a request from the company.

Positive Technologies also released two security tools on Thursday relating to WinCC. The first is a module called WinCC Harvest for the Metasploit penetration testing tool that allows an attacker to collect information from a SQL database within a Siemens SIMATIC WinCC SCADA system.

The other tool, called PLCScan, is used to scan for programmable logic controllers, which are the electronic devices used to control machines in SCADA systems.

Previous Page 1 2

Sign up for CIO Asia eNewsletters.

Siemens industrial software targeted by Stuxnet is still full of holes

FEATURED RESOURCES

On Cloud Nine with IBM

The Future of Retail in a Digital World

Veeam Availability Platform Designs for Ransomware Resiliency Series

VMware Virtual SAN risk avoidance and Availability

Transforming Data protection with Integrations for Microsoft Azure and Microsoft Office 365

SPONSORED LINKS

Financial firms can stay relevant by focusing on digitization, security and data quality

Enterprise Cloud Adoption: Key Trends and Considerations