- EXPLOITING SIEMENS SIMATIC S7 PLCS. IN BLACK HAT USA. SOFTWARE
- EXPLOITING SIEMENS SIMATIC S7 PLCS. IN BLACK HAT USA. WINDOWS
This article will demonstrate a virus/worm that spreads only through a PLC. The worm needed a computer to spread and attack the PLC via the PC.
EXPLOITING SIEMENS SIMATIC S7 PLCS. IN BLACK HAT USA. SOFTWARE
The PLC software was modified so that the centrifuges used in the process were destroyed.
EXPLOITING SIEMENS SIMATIC S7 PLCS. IN BLACK HAT USA. WINDOWS
The virus spread through the station's PC, exploiting MS Windows vulnerabilities. Siemens PLCs were modified to prevent Iran from enriching nuclear fuel. The effectiveness of these attacks was demonstrated by Stuxnet. They can lead to large financial losses, but at the same time, they can have a negative impact on the life and health of others. These hacker attacks can harm industrial systems in many ways. Unfortunately, with the use of IT systems and communication networks in industrial systems, the user is exposed to attacks that have long been known in IT. These processes would not have been possible without modern communication networks. IT systems are critical components in modern industrial processes. We will analyze the effect of the virus on the target and possible methods to reduce the negative consequences. The affected device begins scanning the network for a new target. The main, main program running on the affected PLC is not modified. It scans the network for new targets (PLC), attacks them and reproduces itself on the found targets. The worm lives and works only in the PLC. This vulnerability does not require any additional PCs to propagate. Taking Siemens SIMATIC S7-1200 as a basis, we will demonstrate the virus. Many PLCs sold today have Ethernet ports on board and can communicate over IP. Modern industrial processes are controlled by programmable logic controllers (PLCs).
Source: OpenSource Security Ralf Spenneberg Only translation and a little of my own thoughts on this matter.Ĭredit: Ralf Spenneberg, Maik Brüggemann, Hendrik Schwartke This article is not in the nature of "attribution" of authorship. Remarks and corrections are accepted in the PM or in the comments. Since this is my first translation, at times I can come across a nostalgic memory of Promt. In general, we will talk about very commonplace things. Since the subject was not found in the Russian-language segment of the Internet, it was decided to translate the article into the great and mighty Russian language. The Ethernet brings many advantages as speed, simple wire infrastructure, multiple stations on a single line, standardization, etc.I came across an interesting article about information security in the field of industrial automation. The S7 protocol can be used for communication via PROFINET connector in the PLC device or in add-on communication modules.
The PROFINET protocol is used for communication between PLCs and IO modules.
The S7 protocol is designed for transfering data into SCADA systems via Ethernet. What kind of communication does a plc need? This is not to be confused with the different fieldbus protocols that the Siemens equipment use, such as MPI, Profibus, IE and Profinet (which is an Ethernet based protocol used to connect PLCs to IO modules, not the management protocol of the devices). What are the different protocols used by siemens? Simatic PLC communication types Ethernet communication (protocol S7, PROFINET, IE-Industrial Ethernet): The S7 protocol is designed for transfering data into SCADA systems via Ethernet.
0 kommentar(er)
