[146869] in North American Network Operators' Group
Re: First real-world SCADA attack in US
daemon@ATHENA.MIT.EDU (Hal Murray)
Wed Nov 23 22:03:46 2011
To: nanog@nanog.org
From: Hal Murray <hmurray@megapathdsl.net>
Date: Wed, 23 Nov 2011 19:02:36 -0800
Cc: Hal Murray <hmurray@megapathdsl.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> Like any of the decades largest breaches this could have been avoided by
> following BCP's. In addition SCADA networks are easily protected via
> behavioral and signature based security technologies.
Is there a BCP that covers security for SCADA?
Note that Google for "BCP SCADA" finds
BS-25999 Business Continuity Plan Implementation Checklist ...
----------
Suppose a friend of yours was a low-level geek working for either a
user/operator of a SCADA system or a vendor of software/hardware for that
market. If he asked you for info about security, where would you send him?
(Assume he knows all about SCADA but little about networks or security.)
For that matter, is there any good security info for small to medium sized
businesses? Say a local store, travel agency, or doctor/dentist.
--
These are my opinions, not necessarily my employer's. I hate spam.
