Industrial Control System Attacks
Last Updated: 2008-01-19 03:16:11 UTC
by Marcus Sachs (Version: 1)
At the recent SANS SCADA Summit in New Orleans a CIA spokesman gave the audience these chilling comments:
"We have information, from multiple regions outside the United States, of cyber intrusions into utilities, followed by extortion demands. We suspect, but cannot confirm, that some of these attackers had the benefit of inside knowledge. We have information that cyber attacks have been used to disrupt power equipment in several regions outside the United States. In at least one case, the disruption caused a power outage affecting multiple cities. We do not know who executed these attacks or why, but all involved intrusions through the Internet."
More information on the event is available in the current SANS NewsBites.
Here at the Internet Storm Center we rarely hear about intrusions into the PCS/SCADA community (Process Control Systems / Supervisory Control And Data Acquisition.) If you are an industrial control system asset owner and are willing to share information about cyber attacks you have witnessed, please do so via our contact page. We will maintain your privacy and anonymity if you desire, but please provide enough detail so that other readers and asset owners can understand the nature of the incident you experienced. We'll publish a summary in a future diary.
Marcus H. Sachs
Director, SANS Internet Storm Center