• No results found

t at least t /

N/A
N/A
Info
Downloaden
Protected

Academic year: 2021

Share "t at least t /"

Copied!
1
0
0

Bezig met laden.... (Bekijk nu de volledige tekst)

Download het nu ( 1 pagina )

Hele tekst

(1)

Online Discoverability and Vulnerabilities of ICS/SCADA

Devices in the Netherlands

Executive Summary

On a regular basis we read in the news about cyber attacks on critical infrastructures, such as power plants. Such infrastructures rely on so-called Industrial Control Sys- tems (ICS) / Supervisory Control And Data Acquisition (SCADA) networks. By hacking the devices in such systems and networks, attackers may take over the control of critical infrastructures, with potentially devastating consequences.

This report focusses on critical infrastructures in the Netherlands and investigates three main questions: 1) How many ICS/SCADA devices located in the Netherlands can be easily found by potential attackers?, 2) How many of these devices are vul- nerable to cyber attacks?, and 3) What measures should be taken to prevent these devices from being hacked?

The approach starts with a literature study to determine which ICS/SCADA protocols exist and which TCP/UDP ports are used by these protocols (see Chapter 2). The result of this literature study is a list of 39 protocols, which serves as input to a dedicated search engine (Shodan). The search revealed that, after being queried, almost seventy-thousand systems respond in one way or another. Of these systems only a fraction are real ICS/SCADA devices, the rest are normal PCs, IoT devices etc.. To distinguish between both kind of systems, two lists were created. The first uniquely identifies a system as being an ICS/SCADA device (positive), the second as a non-ICS/SCADA device (negative). In total nearly thousand ICS/SCADA devices were found (see Chapter 3). To determine whether such ICS/SCADA device is prone to known vulnerabilities and to determine the severity of these vulnerabilities, their device signatures were compared to two well known vulnerability datasets (ICS-CERT and NVD, see Chapter 4). Finally, recommendations are provided to limit the discov- erability and vulnerability of ICS/SCADA devices (see Chapter 5).

The main conclusions are that a) tools like Shodan (see Chapter 2) make it extremely easy for potential attackers to find ICS/SCADA devices, b) at least one thousand (989) ICS/SCADA devices in the Netherlands are exposed on the Internet (see Chapter 3), c) around sixty of these devices have multiple vulnerabilities with a high severity level (see Chapter 4) and d) that several well-known and relatively easy to deploy measures exist that help to improve the security of these ICS/SCADA devices (see

Chapter 5). .

The goal of this study was to detect vulnerable ICS/SCADA devices in the Nether- lands and to propose measures to prevent these devices from being hacked. At one hand the number of vulnerable devices seems high and worrying, since in theory the impact of already a single hacked device may be high (like a lock gate or even power plant failure). In addition, the numbers of 989 and 60 mentioned above must be seen as lower bounds, since this study was limited to only (a) IPv4 addresses, (b) relative straightforward search methods (that can already be used by script kiddies), and (c) well-known vulnerabilities. Professional hackers, such as those working for nation states, are certainly able to find more devices and hack these using zero-day exploits.

Referenties

Download het nu ( PDF - 1 pagina - 251.36 KB )

GERELATEERDE DOCUMENTEN

Supervisory control theory toegepast op pretparkvoertuigen

Een supervisory controller heeft twee taken: hij moet de toestand van de plant bijhouden zodat die de juiste terugkoppeling krijgt en hij moet de juiste stuuracties doorgeven aan

Coordinated distributed supervisory control

The distributed supervisory control problem setup is close to the one used in [11], except that the latter one is aimed for aggregative synthesis in the sense that, a new

Migration of professional social workers : reflections on challenges and strategies for education

The strategies expounded are: the facilitation of professional adaptation through the provision of additional training; the integration of globally comparable social work standards

Archeologisch proefsleuvenonderzoek Ingelmunster Zandberg

c) Vrij vast, homogeen, fijne zandleem, licht grijzig wit, weinig houtskoolspikkels, bioturbatie (gangen) d) Vrij vast, homogeen, fijne zandleem, bruinig grijs, beetje. humeus,

Emulsion copolymerization of hydrophobic with hydrophilic monomers leading to products with anomalous chemical composition distributions

Thus, the fraction of relatively MA-rich copolymer is formed during homogeneous nucleation and primary particle formation, whereas the relatively Sty-rich copolymer is formed during

Hybrid Ambitions: Science, Governance, and Empire in the Career of Caspar C.G. Reinwardt (1773-1854)

In order to ensure the colonies in the East a prominent place in Dutch society, the king also founded two new national museums and repositories for the kingdom’s

Challenges and coping strategies of employed female consumers during household purchase decisions

In the section below, different coping strategies that E-FCs use to deal with the challenges they face when making household decisions will be discussed, namely support and

Factors contributing to the failure by parents and care givers to disclose the status of children who are HIV positive

Others stressed the importance of education of parents and guardians to be able to disclose to their children, “It is really helpful to educate parents, we are