Portal de Periódicos da CAPES

Scada Malware, a Proof of Concept

2009; Springer Science+Business Media; Linguagem: Inglês

10.1007/978-3-642-03552-4_19

1611-3349

Andrea Carcano, Igor Nai Fovino, Marcelo Masera, Alberto Trombetta,

Spam and Phishing Detection

Critical Infrastructures are nowadays exposed to new kind of threats. The cause of such threats is related to the large number of new vulnerabilities and architectural weaknesses introduced by the extensive use of ICT and Network technologies into such complex critical systems. Of particular interest are the set of vulnerabilities related to the class of communication protocols normally known as “SCADA” protocols, under which fall all the communication protocols used to remotely control the RTU devices of an industrial system. In this paper we present a proof of concept of the potential effects of a set of computer malware specifically designed and created in order to impact, by taking advantage of some vulnerabilities of the ModBUS protocol, on a typical Supervisory Control and Data Acquisition system.