Learn, hack!

URL

http://ftp.ccc.de/congress/28C3/mp4-h264-HQ/28c3-4661-en-scade_and_plc_vulnerabilities_in_correctional_facilities_h264.mp4

File name

28c3-4661-en-scade_and_plc_vulnerabilities_in_correctional_facilities_h264.mp4

File size

461.5 MB

MD5

dd388a4657be6190ccca2651ac9d5c97

SHA1

997b28debf3015b288ed86c7b06c9f6899ba7fec

Many prisons and jails use SCADA systems with PLCs to open and close doors. Using original and publically available exploits along with evaluating vulnerabilities in electronic and physical security designs, Newman, Rad and Strauchs have discovered significant vulnerabilities in PLCs used in correctional facilities by being able to remotely flip the switches to “open” or “locked closed” on cell doors and gates. This talk will evaluate and demo SCADA systems and PLC vulnerabilities in correctional and government secured facilities while recommending solutions. We figured out how to remotely hack into prisons cell and gate control systems by using publically available Siemens PLC exploits as well as creating our own. Teague and Tiffany did a walk-through a jail in the southwest, USA, saw PLCs in use, took pictures and saw prison guards accessing Gmail from the Control Room computers. We will be presenting the results of this research with John Strauchs discussing electronic and physical security vulnerabilities in modern prison design. Our research was presented at Defcon 19, Las Vegas, NV.