A Russian security researcher has uncovered security vulnerabilities that could allow a malicious attacker to conduct man-in-the-middle attacks, denial‑of‑service attacks, and possibly authenticate themselves as valid users.
So far, so much par for the course.
But what makes this vulnerability disclosure by Ilya Karpov of Positive Technologies particularly noteworthy, as The Register reports, is that the vulnerabilities were found in Siemens SIMATIC HMI devices used to control critical systems at petrochemical facilities, power plants and even the Large Hadron Collider.
Yes, you can imagine how that could cause problems…
One of the vulnerabiities, as described in ICS-CERT’s advisory explains that a hacker might only need a hash of the system’s password - rather than the password itself - to gain access to privileged systems.
If attackers obtain password hashes for SIMATIC WinCC users, they could possibly use the hashes to authenticate themselves. This vulnerability affects SIMATIC WinCC and SIMATIC PCS 7.
Threats such as Stuxnet and Dragonfly have raised the public’s awareness of the need to properly protect industrial control systems (ICS) which control critical infrastructure such as the management of electrical, water, oil, gas and data supplies.
Siemens says it has now patched the vulnerabilities.
Nonetheless, you think you had a headache keeping your home computer updated with security patches? Just imagine if you were responsible for securing the Large Hadron Collider or a nuclear plant…