I'm reproducing here an email thread between Control Design's columnist Jeremy Pollard, Eric Byres of Byres Security and me. It is, shall we say, illuminating. And if this doesn't scare you into moving quickly to secure your plant networks and control systems, you just have not been paying attention, and,...
From Mike Krampe at Siemens Industry.Siemens Statement Regarding Potential Password Security Weakness in SIMATIC Controllers -- Status July 5, 2011Siemens announced today it has identified a potential security weakness in the programming and configuration client software authentication mechanism employed by its SIMA
Once again, RISI, the Repository for Industrial Security Incidents, has released their annual report. RISI is part of Security Incident Organization (www.securityincidents.org) which is the only NGO (non-governmental organization) tracking incidents in industrial control security.
Control's executive editor Jim Montague spotted this over the weekend. It seems that the NYT has discovered Ralph Langer, who, as our readers know, has been writing for both Control magazine and the ControlGlobal.com security blog, Unfettered, for several months now.