So, it seems that the Schneider-Electric corporation is pretty dumb. Unfortunately, this company makes technological components that are used in some of the most critical infrastructure areas that there are. It has just been revealed by researchers that their Modicon Quantum programmable logic controller, which is used to control things such as water plants and oil refineries, has some massive, massive security flaws.
The big flaw has to do with accessing the PLC (programmable logic controller) from a remote source.The PLC does not have any security restrictions that prevent it from being remotely accessed. Because of this, any computer with the capability of communicating with the PLC is able to issue commands to the PLC. These commands can do things like take control of the system or to stop the system from operating altogether.
A researcher from Digital Bond originally created the code that allowed for these security attacks. This researcher, Reid Wightman, says that the purpose of the research was to urge or even force the companies creating these vulnerable technologies to fix these critical issues because they can turn out to have disastrous consequences. Digital Bond has continued to, and is likely to continue in the future, release new modules of code that are able to exploit other vulnerabilities in similar products and software systems.
No comments:
Post a Comment