Written by Gareth Chamberlain, Network & Cyber Security Specialist

In early February 2017 reports started coming up about PLC ransomware attacks, meaning PLCs were being hijacked and controlled by an aggressive attacker. It turned out to be a proof of concept test that used a tool called ‘LogicLocker’. A tool that was written by a Georgia Tech firm, used to demonstrate how easy it is to control a machine. This tool would use what is known as a ‘Logic Bomb’ which fires all outputs in one go and can be used to do this cyclically.

The tool used the native API of the PLC to track the processor down and then exploit known vulnerabilities and weak authentication mechanisms.  You can also test this with just putting a simple search into Shodan and look how many results come back.

The software created is a scary look into what is coming and it is a matter of time before ransomware starts being made on mass and changing tactics from customer data in the commercial industry to Industrial Control systems.

Phoenix Contact’s mGuard solution is a perfect tool to defend your machines and customers from these attacks as well as traditional attacks with Dynamic denial of Service (DDoS) and probing for vulnerabilities. The mGuard product is a proven product with over 10 years of flawless performance. Updated regularly to keep ahead of threats and keeping you in control of who has access to your process.

No other product can say that in the Industrial sector.

Join us at one of our Safe & Secure workshops where I will demonstrate in a live exercise how vulnerable control systems are.

If you have any questions contact Gareth on 01952 681720 or email: gchamberlain@phoenixcontact.com