Vulnerabilities in the program management of various SCADA-systems

Vulnerabilities in the program management of various SCADA-systems

Experts have found a number of vulnerabilities in the program management of various SCADA-systems

Existing mistakes allow hackers to compromise a corporate network of the company, having hacked one of programs of management with the automated systems of the building.

As noted by researchers Terry McCorkle and Billy Rios, the popular SCADA-system Tridium Niagra, which is used by many companies, including Boeing and Whirlpool, and medical institutions around the world to integrate and manage the energy systems of buildings and other operations, such as lighting, climate control and fire safety is at risk of breaking.

Experts have found a number of vulnerabilities that allow an attacker to remotely hack electrical and other critical systems for buildings and demonstrated the attack on the platform.


This platform is used to manage access control, elevator operation, alarm and climate control in buildings. It manages the building systems that operate separately and do not cross ... but today, when there are embedded controllers and browsers to track the amount of energy used and the schedule of employees, all of this can be tracked online.

In this case, hackers can compromise a corporate network, cracking one of the building systems.

Existing vulnerabilities Tridium Niagra allow unauthorized users to load configuration files building systems controlled by Tridium, and, in consequence, to get access to the management of these systems by hacking platform.