2. About me
• Co-founder and Researcher @ SignalSEC Corp.
• Vulnerability Research and Intelligence
• Have discovered lots of vuln affects Adobe,
IBM, Microsoft, Facebook, SCADA , Novell etc.
• Speaker at CONFidence, Hackfest, Swiss Cyber
Storm, c0c0n etc.
• Organizer of NOPcon Hacker Conference
4. Jargon / Terminology
• Vulnerability: software bug which causes a security
issue.
• 0-day: Unknown vulnerability in a computer
application. No patch!
• Exploit: A software to break software and take
advantage
21. Why it’s easy?
There was not a real threat for SCADA software
untill 2010
So the developers were not aware of SECURE
Development
22. Case-1: CoDeSys Vulnerability
• CoDeSys PLC Visualization Software – WebVisu
Vulnerability
• WebVisu uses a webserver which is usually
open to Internet for visualization of PLC
• Discovered by me
• http://ics-cert.us-cert.gov/pdf/ICSA-12-006-01.pdf
23. Case-1: CoDeSys Vulnerability
• France, Poland, Deutch Telecom use this
software
• Buffer overflow vulnerability when parsing
long http requests due to an unsafe function