Comments
Project 'Gridstrike' Finds Substations To Hit For A US Power Grid Blackout
Newest First  |  Oldest First  |  Threaded View
Brian.365
50%
50%
Brian.365,
User Rank: Apprentice
1/11/2016 | 7:32:23 PM
Probably much more vulnerability out there....
Years back, I did an interesting study on a theoretical terrorist attack to San Onofre Generating Station in Southern California, before new units of the nuclear power plant came on line. I got all the info I needed from the public library and the Environmental Impact Report. Although it is now in the process of decommissioning, back in 1980's it appeared to be very vulnerable to sabotage and terrorism.  The ocean intake cooling tubes were wide open and could easily be compromised. Without adequate cooling water the plant would have been toast. My only credentials to do such a study is that I was a commercial diver a few years prior.
Leati
50%
50%
Leati,
User Rank: Apprentice
1/11/2016 | 4:35:48 PM
Re: Correction?
No, it's okay
sbarry71
50%
50%
sbarry71,
User Rank: Apprentice
1/7/2016 | 4:08:43 PM
Correction?
"He will speak publicly for the first time about the Gridstrike research next week at the S4x2016 ICS/SCADA conference in Miami."

 

Pretty sure I attended a webinar about the report January 13th of 2015.


Veterans Find New Roles in Enterprise Cybersecurity
Kelly Sheridan, Staff Editor, Dark Reading,  11/12/2018
Understanding Evil Twin AP Attacks and How to Prevent Them
Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies,  11/14/2018
Empathy: The Next Killer App for Cybersecurity?
Shay Colson, CISSP, Senior Manager, CyberClarity360,  11/13/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-18805
PUBLISHED: 2018-11-16
PointOfSales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.
CVE-2018-18806
PUBLISHED: 2018-11-16
School Equipment Monitoring System 1.0 allows SQL injection via the login screen, related to include/user.vb.
CVE-2018-16396
PUBLISHED: 2018-11-16
An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.
CVE-2018-18755
PUBLISHED: 2018-11-16
K-iwi Framework 1775 has SQL Injection via the admin/user/group/update user_group_id parameter or the admin/user/user/update user_id parameter.
CVE-2018-18756
PUBLISHED: 2018-11-16
Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008.