Delve into a critical cybersecurity presentation that reverse-engineers the Siemens S7-1500 Software Controller PLC, exposing vulnerabilities in its communication protocol. Explore how fundamental security principles are violated and examine the ineffective obfuscation and cryptography modifications implemented. Gain insights into the persistent security weaknesses of industrial control systems a decade after the Stuxnet incident. Learn from security researchers Tom Dohrmann and Colin Finck as they demonstrate the ongoing challenges in securing critical infrastructure against potential cyber attacks.
Overview
Syllabus
A Decade After Stuxnet: How Siemens S7 is Still an Attacker's Heaven
Taught by
Black Hat