This week in hacking: The control system for a U.S. public utility was compromised. The Department of Homeland Security did not specify which utility was affected in the agencys Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) report. A DHS official told Reuters, While unauthorized access was identified, ICS-CERT was able to work with the affected entity to put in place mitigation strategies and ensure the security of their control systems before there was any impact to operations. The actual hack was relatively simple: they determined the password through a tactic known as brute forcing. In a brute force hack, the attackers auto generate a variety of password combinations and try them until something clicks.
Comments are closed.
