28C3: SCADA and PLC vulnerabilities in correctional facilities
In this full length presentation from the recent 28C3 conference in Berlin, Tiffany Rad, Teague Newman and John Strauchs describe the opportunities and challenges presented by SCADA systems used in prisons and jails.
These systems are often used in conjunction with PLCs to open and close doors. Using original and publicly available exploits along with evaluating vulnerabilities in electronic and physical security designs, Newman, Rad and Strauchs have discovered significant vulnerabilities in PLCs used in correctional facilities by being able to remotely flip the switches to “open” or “locked closed” on cell doors and gates. This talk will evaluate and demo SCADA systems and PLC vulnerabilities in correctional and government secured facilities while recommending solutions.
UPDATE: According to the speakers, John Strauchs and his company were the inspiration for the 1990s hacker flick “Sneakers”. However, this is questionable (see comment below).This entry was posted in security, talks and tagged 28C3, prisons, SCADA.