Siemens PCS7 WinCC Malware

New Stuxnet White Paper: Analysis of the Siemens WinCC / PCS7 “Stuxnet” Malware for Industrial Control System Professionals.

Stuxnet is a computer worm designed to take advantage of a number of previously unknown vulnerabilities present in the Windows operating system and Siemens SIMATIC WinCC, PCS7 and S7 product lines.

It was designed to target one or more industrial systems that use Siemens PLCs with the apparent objective of sabotaging industrial processes.

This White Paper summarizes the current known facts about the Stuxnet worm and the actions that operators of SCADA and ICS systems can take to protect critical operations.

Also included is Joel Langill's excellent video that shows in detail how Stuxnet infects a system.

Download the White Paper:

PDF Analysis of the Siemens WinCC / PCS7 “Stuxnet” Malware for Industrial Control System Professionals, version 3.2 (83kb)    

Major updates in this version include:

  • A new summary of what Stuxnet is, what its consequences are, and how it is spreading

  • A revision to the list of vulnerable systems

  • An expanded analysis of the available Detection and Removal tools

  • A new Prevention/Mitigation section that covers both patchable and non-patchable systems

IMPORTANT NOTE: to download the White Paper you need to be a member of this website. If you are not a member, register here.

Watch the Stuxnet Video:

Video Joel Langill's Stuxnet Infection Video

This video was created by:

Joel Langill
CEH, CPT, CCNA, TUV FS-Eng
Control Systems Security Consultant
ENGlobal
www.englobal.com

  

RSS Feed Subscribe to the news feed for our blog "Practical SCADA Security"