We have taught our SCADA Security Training course over 15 times this year, and in over the past 3 years, we have trained over 1200 professionals through our SCADA Security courses offered through SANS, BlackHat, and directly through our company. In a recent training event, some of the students had some fun creating custom SCADA protocol packets and sending them to the SCADA devices without any authentication required. Check out the video below!

Enjoy :)
Jonathan

Hacking PLC and RTU SCADA devices in a lab

We believe that while good companies are those that are profitable and sustainable, great companies are those that also give back to their community of interest. Contributing to critical infrastructure security events, assiting in developing industry best practices, and passing on our knowledge and tips onto others is a critcal part of our organization and a personal passion of mine. Since our start in the SCADA Security space back in 2001, I have pushed those working with me to stay plugged into industry events. On average, we participate in over 30 cybersecurity and industrial security events a year.

NERC Gridsecure Malware Panel

We strive to maintain a balance of working in the trenches doing site assessments, training others with our 2, 3, and 5-day courses, conducting new research in this field, and participating at industry events. These activities tend to feed the cycle. As we learn new things out in the field, we update our training course. As we participate in industry events, we take this information and meld it back into our methodology. We also enjoy the chance to infuse our passion for security into the community.

Next stop > Hacker Halted

Hope to see you there in Miami

/jonathan

Those of you in the Critical Infrastructure Protection and Industrial Security community know that there are a few industry events coming up in October.  We have been invited to speak and participate at the following four events:

- WECC (Western Electricity Coordinating Council) CUG and CIPUG Meeting
    Location: San Diego, CA
       More Details: http://www.wecc.biz/20121015/default.aspx?InstanceID=1

- NERC Gird Security Conference
    Location: San Diego, CA
      More Details: https://payment.nerc.net/GridSecCon/GridSecReg.aspx

- ICSJWG (Industrial Control Systems Joint Working Group) 2012 Fall Meeting
    Location: Denver, CO
    More Details: http://www.us-cert.gov/control_systems/icsjwg/2012/fall/index.html

- Hacker Halted
    Located: Miami, FL
    More Details: http://www.hackerhalted.com/2012/Conference.aspx


I will be participating in several Malware Panel discussions in San Diego, volunteering at the ICSJWG event in Denver, and then presenting an hour long multi-media presentation about hacking SCADA Systems in Miami.  If you are planning on attending any of these upcoming events, drop us a line so we can meet up at the conference, or plan some discussions offsite over dinner / drinks.

Have a great weekend, and Geaux LSU Tigers!
Jonathan