Last month Byres Security Inc. cautioned of a new family of threats called Stuxnet directed specifically at Siemens WinCC and PCS7 products via a previously unknown Windows vulnerability.
On the heels of the Microsoft patch for the Stuxnet vulnerability, Byres Security has updated its recommendations for addressing this critical SCADA-focused software worm. Its revised white paper “Siemens PCS7 WinCC Malware” is available for download by all Tofinosecurity.com members now. If you are not a member, you can sign up for free. According to Eric Byres, P.E., and Chief Technology Officer of Byres, "We have created a very complete program to ensure member privacy."
Byres Security has also started a blog called Practical SCADA Security. "The intent is to provide clear and simple guidance to our friends and customers when situations like Stuxnet occur," says Byres. "For example, in my next post I will discuss why Stuxnet will infect ALL versions of Windows, including older Windows-NT and Windows 2000 systems."