Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Threat Intelligence

11/18/2019
09:00 AM
Kelly Sheridan
Kelly Sheridan
Slideshows
Connect Directly
Twitter
LinkedIn
RSS
E-Mail

13 Security Pros Share Their Most Valuable Experiences

From serving as an artillery Marine to working a help desk, infosec practitioners pinpoint experiences that had the greatest influence on their careers.
10 of 11

A Near-Miss Safety Hazard

A valuable experience in PAS Global founder and CEO Eddie Habibi's security career was during his first gig as an independent OT consultant. He was in the control room of a refinery on the Houston Ship Channel, working on the design, configuration, and commissioning of a Honeywell TDC3000 control system at a Fluid Catalytic Cracking (FCC) unit. The unit had a capacity of some 100,000 barrels per day, or more than 130,000 gallons of oil moving through a large pipe every hour.

One day, a "reversal at the fluid unit" prompted a near disaster at the control room, Habibi says. While the operators brought it back to a safe state, an incident investigation showed a simple typo had been the cause. An operator had entered 97% instead of 9.7%, causing the slide valve to move far more than intended.

"It was clear this was an unintentional and plausible human error, the kind of error that can happen to anyone, even when performing critical tasks," he says. "But the potential impact of it was not lost on me." The incident reinforced his enthusiasm for operational safety, and Habibi has since focused on his career on the operator's role in hazardous processes.

"The ultimate goal of an OT cyberattacker on a processing plant is to move molecules to places they are not designed to go, furthermore causing accidents that destroy assets, create unsafe conditions, and harm the environment," Habibi says.

(Image: PAS Global)

10 of 11
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
More SolarWinds Attack Details Emerge
Kelly Jackson Higgins, Executive Editor at Dark Reading,  1/12/2021
Vulnerability Management Has a Data Problem
Tal Morgenstern, Co-Founder & Chief Product Officer, Vulcan Cyber,  1/14/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-22850
PUBLISHED: 2021-01-19
HGiga EIP product lacks ineffective access control in certain pages that allow attackers to access database or perform privileged functions.
CVE-2021-22851
PUBLISHED: 2021-01-19
HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter (document management page) to obtain database schema and data.
CVE-2021-22852
PUBLISHED: 2021-01-19
HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter (online registration) to obtain database schema and data.
CVE-2021-3178
PUBLISHED: 2021-01-19
** DISPUTED ** fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to preven...
CVE-2021-3177
PUBLISHED: 2021-01-19
Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to c_double.from_param. This occurs because sprintf i...