Hacker Claims He Broke Into Wind Turbine Systems

← Back to Stories (view on slashdot.org)

Hacker Claims He Broke Into Wind Turbine Systems

Posted by samzenpus on Sunday April 17, 2011 @10:06PM from the I've-got-the-power dept.

itwbennett writes "Claiming revenge for an 'illegitimate firing,' someone has posted screenshots and other data, apparently showing that he was able to break into a 200 megawatt wind turbine system owned by NextEra Energy Resources, a subsidiary of Florida Power & Light. In an e-mail interview, Bgr R said he's a former employee who discovered a vulnerability in the company's Cisco security management software that he then used to hack into the SCADA systems used to control the turbines. His motive was to embarrass the company, he said."

9 of 105 comments (clear)

Min score:

Reason:

Sort:

Former employee? by atari2600a · 2011-04-17 22:13 · Score: 4, Insightful

Well that pretty fucking much limits the list of possible suspects now doesn't it?
1. Re:Former employee? by fostware · 2011-04-17 22:45 · Score: 3, Funny
  
  At least he's used to port protection and possibly port blocking
  
  --
  "We know what happens to people who stay in the middle of the road. They get run over." - Aneurin Bevan
Re:Wind turbines? Insecure! Let's abolish them! by mug+funky · 2011-04-17 22:23 · Score: 3, Funny

yes. too much can go wrong. this has the potential to be another Windscale.
i suggest we go to nuclear as soon as feasible.
Hacker breaks wind by Anonymous Coward · 2011-04-17 22:24 · Score: 5, Funny

News at 11.
Sounds dodgy to me... by BrokenHalo · 2011-04-17 22:33 · Score: 5, Insightful

In an e-mail interview, Bgr R said he's a former employee who discovered a vulnerability in the company's Cisco security management software that he then used to hack into the SCADA systems
That just tripped my bullshitometer. Most Cisco systems (in my experience) are pretty robust, but an employee would have been in a good position to create an open door for himself to use later. So the "vulnerability" (if I'm right) would simply be his employer's misplaced trust in him.
1. Re:Sounds dodgy to me... by amanicdroid · 2011-04-17 22:48 · Score: 3, Insightful
  
  Oo oo I love Cisco Jeopardy! I'll go with:
  
  What is he had remote access to the KVM that the Cisco's console port was connected to?
Just waiting for the follow-up... by BagOCrap · 2011-04-17 22:59 · Score: 4, Funny

When the shit hits the fan.

--
-- Chaos, panic, pandemonium... My job here is done!
Stupid goal by DoofusOfDeath · 2011-04-17 23:16 · Score: 5, Funny

He'll risk prison just to break wind in public?
FAKE by StickyWidget · 2011-04-18 00:09 · Score: 4, Insightful

FAA: "Wind power company sees no evidence of reported hack
" http://www.itworld.com/security/156817/wind-power-company-sees-no-evidence-reported-hack
Also:
http://seclists.org/fulldisclosure/2011/Apr/264
http://seclists.org/fulldisclosure/2011/Apr/265
~Sticky