SCADA Systems

Posted by jbrya044 on

     The term SCADA stands for supervisory control and data acquisition. SCADA systems control infrastructure, facility-based, and industrial processes. All these processes consist of airports, gas pipelines, power generation, wind farms, production and more. This system is not controlled in real time. SCADA systems that were usually targeted for cyberterrorism or cyber warfare attacks. Even though these systems are not directly connected to the internet, they still are at risk of cyberthreats. SCADA is in charge of a lot of things used in our everyday life. It is important that it remains protected.Vulnerabilities with SCADA can be found in HMI, mobile applications, and protocols. HMIs have sensors and machines that are connected to the SCADA system. HMI stands for Human Machine interface. This holds a good amount of data, which immediately attracts hackers who want to steal information. Mobile applications are easily targeted because they control the PLCs and RTUs. A PLC is a programmable logic controller. They control the flow of cooling water. A RTU is a remote terminal unit. It converts electrical signals into digital values. Two men named Alexander Bolshev and Ivan Yushkevich did some research back in 2018. This research revealed that 147 vulnerabilities were found in 20 applications.  Communication protocols are beneficial to SCADA systems; however, some lack the capability to fight off all the threats SCADA can have. Two common communication protocols are Modbus and Profinet. Overtime, measures have been taken in order to prevent these vulnerabilities from becoming a bigger issue. These steps are provided by the NIST guide. A few of them are applying network segmentation, using virtual patching to manage updates, and maintaining strict policies for devices that are allowed to connect to SCADA Networks. Patching manages vulnerabilities and prevents exploits. Keeping outside devices away from SCADA networks should lessen threat activities.

Works Cited

SCADA Systems. (n.d.). SCADA systems. SCADA Systems. Retrieved March 18, 2022, from http://www.scadasystems.net/ Trend Micro. (2019, December 16). One flaw too many: Vulnerabilities in SCADA systems. Trend Micro. Retrieved March 18, 2022, from https://www.trendmicro.com/vinfo/us/security/news/vulnerabilities-and-exploits/one-flaw-too-many-vulnerabilities-in-scada-systems#:~:text=It%20should%20be%20noted%20that,DoS)%2C%20or%20steal%20information.

Leave a Reply

Your email address will not be published. Required fields are marked *