A software security hole has been found in the
application used by power plants, reports New
Scientist.
Penetration-testing firm Core Security discovered a security
hole in the Suitelink software from Wonderware.
The application is used to automate operations at oil refineries
and production lines, as well as power stations.
New Scientist reports that attackers exploiting the
vulnerability could attempt to crash the software by transmitting
an outsize data packet to a certain port on the machine running
Suitelink.
Wonderware has already issued a security patch for the problem,
leaving power stations and others to now update their machines.
A security researcher from Core Security is this week scheduled
to reveal a rootkit security hole in the Cisco IOS operating system
- that potentially affects all Cisco routers - at a London security
conference.