I just picked up reading this thread...
At 22:41 2003-08-14 -0400, [EMAIL PROTECTED] wrote:
Oh, and for you wardrivers, SCADA can be access on the roadÂ… a
new perspective on sniffing around sewer plants.
Does this mean that someone with a WLAN-enabled computer who passed such an
installation
Its highly unlikely that msblast had anything to do with the power outage.
For one, the internal rpc network that is used to monitor actual power
spikes, and to move current from one circut to the next in a grid is a
closed network. And in the areas were it cant be closed (between major
utilities)
]
Sent: Saturday, August 16, 2003 1:36 AM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Its highly unlikely that msblast had anything to do with the power outage.
For one, the internal rpc network that is used to monitor actual power
spikes, and to move current from one
- Original Message -
From: Geoff Shively [EMAIL PROTECTED]
To: Stephen Clowater [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, August 16, 2003 3:33 AM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Please, if that
were the case, why have none of hte
On 16 Aug 2003 at 5:36, Stephen Clowater wrote:
Its highly unlikely that msblast had anything to do with the
power outage. For one, the internal rpc network that is used to
monitor actual power spikes, and to move current from one circut
to the next in a grid is a closed network. And in the
Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bernie, CTA
Sent: Saturday, August 16, 2003 1:25 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
I still feel that there was human intervention to disrupt or
otherwise circumvent
PROTECTED]
To: Geoff Shively [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, August 16, 2003 12:34 PM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
- Original Message -
From: Geoff Shively [EMAIL PROTECTED]
To: Stephen Clowater [EMAIL PROTECTED]
Cc: [EMAIL
Richard
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bernie, CTA
Sent: Saturday, August 16, 2003 1:25 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
I still feel that there was human intervention
- Original Message -
From: Geoff Shively [EMAIL PROTECTED]
To: Stephen Clowater [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, August 16, 2003 3:55 PM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
I'd read thru the bugtraq archives on securityfocus.com
: Richard M. Smith [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, August 16, 2003 11:25 AM
Subject: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Ground zero for the blackout seems to be Parma, OH according to
local papers and ABC News:
http://abcnews.go.com/wire
- Original Message -
From: Bernie, CTA [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, August 16, 2003 2:25 PM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
On 16 Aug 2003 at 5:36, Stephen Clowater wrote:
Its highly unlikely that msblast had anything
On 16 Aug 2003 at 20:37, Stephen Clowater wrote:
First of all, it is unrealistic to assume that the power
plants, distribution nodes and sub stations are still equipped
with 1965 technology. Have you ever visited any of these
facilities? I have.
Thats not what I said, What I said was
The theory that the Blackout event started by power generation
loss (downed transmission lines) at a Cleveland plant is a
little better then the lightning bolt Canada theory, but still
inconsistent with the technical aspects of the Grids automated
fault protection and power load balancing
I did hear that there was a company that just coincidentally
received a patent on a unique superconductor based arrester
valve the day before the blackout. This valve is designed to
suck down excess power surges and they could cost millions of
dollars.
snip
Â…Intermagnetics to develop surge
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On August 16, 2003 06:50 pm, Bernie, CTA wrote:
On 16 Aug 2003 at 20:37, Stephen Clowater wrote:
First of all, it is unrealistic to assume that the power
plants, distribution nodes and sub stations are still equipped
with 1965 technology.
-BEGIN PGP MESSAGE-
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
hQEOAw3ENNOYE9GtEAP/QCiUFPwHxRYDxFmIWdbnueG61DKJD7LGZj40K/XUd5Gh
4KiXf50YFVdSK6ptHyU1xOrnE1LCKi9LVgoCjKwFeAKitRwjS9f8GOt6s9zvHSMG
Title: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
http://www.pbs.org/wgbh/pages/frontline/shows/cyberwar/view/
PBS Video
-Original Message-
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kane Lightowler
Sent: Thursday,
August 14, 2003 9:06 PM
-Disclosure] east coast powergrid / SCADA [OT?]
Anyone wanna comment on SCADA and the cascading failure that happened
today in the north east, like potential for a similar outage from a
cyber based attack, etc?
Sorry ... I need to read about something other than blaster before I go
insane. =]
-KF
-BEGIN PGP MESSAGE-
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
hQEOAw3ENNOYE9GtEAP/WqcYTf8wH867hPDRwjNd9d76MzUUEMvpg858Wpes6rth
W3+PDEr+hz4cmBVI9y7Ii+X2gHxpAfrO5H4FJjy6zX3uSKEBv4NZQu6cJSCFTnDj
/power_outage_worm_dc
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of KF
Sent: Thursday, August 14, 2003 10:28 PM
To: Andre Ludwig
Cc: '[EMAIL PROTECTED]'
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
I have found out that RPC is
used on several SCADA
On 14 Aug 2003 at 17:15, Andre Ludwig wrote:
It is my general feeling that the power failure could be SCADA
related. If it was an attack or an accident i do not know, nor
do i think the appropriate information will ever be released to
the public. Allot of SCADA systems from my research do
I have certainly seen evidence to support this based only on obvious
ssid names and kismet. I have seen ssids lke pump1 pump2 near things
like a small dam or flood control systems etc in some of the small towns
around where I live. Like I stated above though I can only *assume* they
are SCADA
Paller said it is highly unlikely that the process control computers
behind critical infrastructure like power in the United States would run on
the Windows operating system.
well, ONTARIO HYDRO does seem to have SOME windoes boxes.. at least here
is one that appears to have been infected
: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Paller said it is highly unlikely that the process control computers
behind critical infrastructure like power in the United States would
run on the Windows operating system.
well, ONTARIO HYDRO does seem to have SOME windoes boxes
Thus spake Michael Scheidell ([EMAIL PROTECTED]) [15/08/03 15:40]:
Paller said it is highly unlikely that the process control computers
behind critical infrastructure like power in the United States would run on
the Windows operating system.
well, ONTARIO HYDRO does seem to have SOME
But that doesn't necessarily mean that they are process control machines...
This could easily be a workstation.
Which in turn scans and finds another host... which scans and finds
another host... eventually finds a multi homed box... spreading through
a
I can't image that anything really important would be
connected to the internet. Then again who knows right.
remember that 'connected to the Internet' means, at a minimum, that the device
communicates at some point in time with another device that had the ability to
communicate with the
To: tetsujin
Cc: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Paller said it is highly unlikely that the process control computers
behind critical infrastructure like power in the United States would
run on the Windows operating system.
well, ONTARIO
] On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, August 15, 2003 3:41 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
At least on the west coast they do not, I think the requirements of the
systems are way out of Microsoft's
[mailto:[EMAIL PROTECTED]
Sent: Friday, August 15, 2003 11:36 AM
To: tetsujin
Cc: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Paller said it is highly unlikely that the process control computers
behind critical infrastructure like power
On Fri, 15 Aug 2003 18:11:29 EDT, Joshua Thomas [EMAIL PROTECTED] said:
What I have more trouble believing is that a single
workstation/controlstation would allow a large enough change to a power
plant to cause an effect like this.
In an ideal world, doing something like shuting down the
PROTECTED]
Sent: Friday, August 15, 2003 4:17 PM
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gml,
You might want to re-consider that statment. There are many obvious
critical things connected to the internet that affect our
Anyone wanna comment on SCADA and the cascading failure that happened
today in the north east, like potential for a similar outage from a
cyber based attack, etc?
Sorry ... I need to read about something other than blaster before I go
insane. =]
-KF
interesting subject matter.
Andre Ludwig, CISSP
-Original Message-
From: KF [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 14, 2003 3:54 PM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Anyone wanna comment on SCADA and the cascading failure
to
Break and that's the problem. Maybe it's really Canada aboot to start a war
eh?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of KF
Sent: Thursday, August 14, 2003 6:54 PM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] east coast powergrid / SCADA [OT
rofl.
/m
- Original Message -
From: gml [EMAIL PROTECTED]
To: 'KF' [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Thursday, August 14, 2003 5:45 PM
Subject: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Are you saying that Open Source software can save us from power grid
Title: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
I Caught the PBS doco, thought it was quite interesting.
I got the secion on the power grid SCADA systems online if anyone is interested
http://scooby.oranged.to/cyberwar/4_hi.mov
Enjoy
Kane
-Original Message-
From
Anyone wanna comment on SCADA and the cascading failure that
happened today in the north east
I was thinking about posting something on this, myself.
Speculation as to whether the actual incident was caused from
a massive solar flare. That would make a little sense to me
seeing as here, I saw
?
=]
-KF
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of KF
Sent: Thursday, August 14, 2003 6:54 PM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Anyone wanna comment on SCADA and the cascading failure that happened
I have found out that RPC is
used on several SCADA systems, to what extent i do not know, nor do i know
if they are vulnerable to the recent rash of RPC based exploits. If someone
with more knowledge on these systems can please come forward i would greatly
appreciate it.
yeah kinda
More fuel for the diversion from the drawn out ms blaster debate!
http://www.cnn.com/US/9608/10/power.outage.update/
and
http://www.cnn.com/TECH/9608/11/power.outage/index.html
The more and more research i do the weirder it gets.
*cue X files theme song*
:)
yeah kinda interesting... the SCADA link here:
http://www.automationtechies.com/sitepages/pid641.php
includes links to the following documents.
DCOM Whitepaper
http://www.iconics.com/support/pdfs/whitepapers/Dcom_whitepaper.pdf
(PDF, 149K)
DCOM Quick Start
-BEGIN PGP MESSAGE-
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
hQEOAw3ENNOYE9GtEAP9E1l32mQgF8K6W/YSJE/asmF4NYfuRVwnFORbszeiKqt/
fEiqGnlvrx+opeqPOXkidOpsHuU3UJVnvtFLVmXrpPljSdQUOMUjHPiUFV5WNVVQ
43 matches
Mail list logo