White Paper Addresses Vulnerabilities of Iconics Genesis Platform

March 29, 2011
Report covers detection and removal of potential attacks.
A new white paper addresses vulnerabilities of the Iconics Genesis HMI platform that could open system to potential attacks. The paper comes after a study revealed 34 vulnerabilities against four SCADA/HMI products. In the paper, Eric Byres, chief technology officer of Byers Security Inc., and Joel Langill cover six measures that Iconics Genesis customers can take to protect their system from these vulnerabilities. The authors advise users of other HMI products to consider similar measures.Topics covered include vulnerability details, affected systems, detection and removal, mitigations and compensating controls, frequently asked questions and references.At minimum, the vulnerabilities can be used to crash control system servers, causing a denial-of-service condition and loss of view, say the report's authors. A more experienced attacker could exploit them to gain system access and then inject potentially malicious code.For more information, visit http://www.tofinosecurity.com.

Sponsored Recommendations

Keys to Improving Safety in Chemical Processes (PDF)

Many facilities handle dangerous processes and products on a daily basis. Keeping everything under control demands well-trained people working with the best equipment.

Get Hands-On Training in Emerson's Interactive Plant Environment

Enhance the training experience and increase retention by training hands-on in Emerson's Interactive Plant Environment. Build skills here so you have them where and when it matters...

Rosemount™ 625IR Fixed Gas Detector (Video)

See how Rosemount™ 625IR Fixed Gas Detector helps keep workers safe with ultra-fast response times to detect hydrocarbon gases before they can create dangerous situations.

Micro Motion 4700 Coriolis Configurable Inputs and Outputs Transmitter

The Micro Motion 4700 Coriolis Transmitter offers a compact C1D1 (Zone 1) housing. Bluetooth and Smart Meter Verification are available.