Pinboard (jm)
https://pinboard.in/u:jm/public/
recent bookmarks from jmSCADA systems online, and a horror story about a non-airgapped Boeing 747 engine management system2015-04-17T20:28:31+00:00
http://www.infosecisland.com/blogview/16696-FACT-CHECK-SCADA-Systems-Are-Online-Now.html
jm747's are big flying Unix hosts. At the time, the engine management system on this particular airline was Solaris based. The patching was well behind and they used telnet as SSH broke the menus and the budget did not extend to fixing this. The engineers could actually access the engine management system of a 747 in route. If issues are noted, they can re-tune the engine in air.
The issue here is that all that separated the engine control systems and the open network was NAT based filters. There were (and as far as I know this is true today), no extrusion controls. They filter incoming traffic, but all outgoing traffic is allowed.
(via Paddy Benson)]]>air-gap planes boeing security 747 solaris unixhttps://pinboard.in/https://pinboard.in/u:jm/b:45a47551fb9b/HACKERS COULD COMMANDEER NEW PLANES THROUGH PASSENGER WI-FI2015-04-17T09:20:22+00:00
http://www.wired.com/2015/04/hackers-commandeer-new-planes-passenger-wi-fi/
jmBoeing 787 Dreamliner jets, as well as Airbus A350 and A380 aircraft, have Wi-Fi passenger networks that use the same network as the avionics systems of the planes
What the fucking fuck. Air-gap or gtfo
]]>air-gap security planes boeing a380 a350 dreamliner networking firewalls avionicshttps://pinboard.in/https://pinboard.in/u:jm/b:080b50a06cc4/747s using VLANs to secure in-flight access to engine management systems2011-11-26T09:19:29+00:00
https://plus.google.com/u/0/110897184785831382163/posts/5qsNxFEaiML
jmscary aviation flight security boeing 747 via:riskshttps://pinboard.in/https://pinboard.in/u:jm/b:84940f0c3c84/