[ISN] Important SCADA systems secured using weak logins, researchers find

http://news.techworld.com/security/3420347/important-scada-systems-secured-using-weak-logins-researchers-find/ By John E Dunn Techworld 14 January 2013 Thousands of critical SCADA systems reachable from the Internet are secured by dangerously weak default passwords, a survey carried out with the help of the US Department of Homeland Security has found. According to a third-party report, Bob Radvanovsky and Jacob Brodsky of consultancy InfraCritical used scripts run through the Shodan search engine – ‘Google for hackers’ – to identify 7,200 vulnerable logins. After initially searching 500,000 systems, the pair whittled that list in order to put a number to the problem of vulnerable SCADA interfaces before reporting their findings to the DHS. “The biggest thing is we are trying to assign a number – a rough magnitude -to a problem plaguing the industry for some time now,” Radvanovsky was quoted as saying. […] ______________________________________________ Visit the InfoSec News Security Bookstore Best Selling Security Books and More! http://www.shopinfosecnews.org