AppSec Blog: Daily Archives: Jul 22, 2010

Hard-Coded Password in Critical SCADA Software

Wired reports that a new piece of malware is using a hard-coded password in Siemens' Simantic WinCC SCADA system to access the underlying MS SQL Server database which contains information used to manage critical utilities and manufacturing facilities. The article quotes Joe Weiss as saying "Well over 50 percent of the control system suppliers" have … Continue reading Hard-Coded Password in Critical SCADA Software