SCADA system vulnerabilities up 30% TrendMicro researchers reveal
Researchers at TrendMicro found a 30 percent increase in vulnerabilities in SCADA systems in the first six months of 2018 compared to last year.
The number of reported vulnerabilities related to supervisory control and data acquisition (SCADA) systems increased since the second half of 2017, and many of these vulnerabilities were found in human-machine interface (HMI) software. The SCADA HMI is the main digital hub that manages critical infrastructure, and the data it shows has some reconnaissance value for attackers.
TrendMicro Unseen Threats Imminent Losses Report August 2018
SCADA is a control system architecture that uses computers, networked data communications and graphical user interfaces for high-level process supervisory management, but uses other peripheral devices such as programmable logic controller (PLC) and discrete PID controllers to interface with the process plant or machinery.
SCADA systems have been ignored by most security vendors because of the difficulty of installing software on these machines. Antivirus and endpoint protection software simply cannot be installed on these machines. This makes them excellent attack vectors for APT.