Hackers can take over nuclear power plants thanks to Industrial Ethernet Switches

faa bans drone flights over nuclear sites plant
Thought large government agencies were the most alarming entities to fall victim to a cyberattack? Think again. According to new research set to be fully released at the Black Hat cybersecurity conference in Las Vegas next week, Industrial Ethernet Switches (IES), which are responsible for maintaining the internal networks of today’s factories, refineries, ports, and other industrial organizations, are vulnerable to hackers and cyberattacks. As the Daily Dot reported, these lapses in security could allow ill-intentioned individuals to “gain access to the network, take full control, and cause potentially fatal damage.” But don’t worry — researchers and scientists may or may not be working on fixing that.

The IES, which are rarely used in the everyday home setting but are commonplace in large-scale operations, especially those that could cause catastrophic damage in the case of a cyberattack, has a number of potential pitfalls that could prove problematic in certain scenarios. These pitfalls include the frequent use of “default passwords, hard-coded encryption keys, and a lack of proper authentication for firmware updates.” In combination with one another, these so-called “fundamental failures of security” form a hacker’s trifecta, making it relatively simple for attackers to access the systems in question.

Robert Lee, a security researcher and and active-duty U.S. Air Force Cyber Warfare Operations Officer told the Daily Dot, “Anything that the facility is capable of in its natural operating system, you’re [an attacker] capable of doing — and doing damage with if you control the network. With a power station, you can have major repercussions. With a hydroelectric dam, if you don’t monitor processes in a normal situation, it’ll spin out of control. Everything you have can be manipulated.”

While Lee is working with risk researcher Eireann Leverett to address these shortcomings and assuage public fears about such issues, the process is an arduous one. Leverett told the Daily Dot, “All these vulnerabilities are pervasive and endemic. Most vendors haven’t done the basics,” particularly because when the equipment was initially installed, many of today’s threats were simply not yet present in the cybersecurity landscape.

But now that hackings have grown ever more common and robust, the time is rife for a complete security overhaul, especially among companies and infrastructure that need it most. “What we don’t have is awareness,” said Lee. “There is a massive lack of security awareness in the industrial control systems community,” and that’s where attention needs to be focused first.

Gaming

New ‘Battlefield V’ patch gives Nvidia’s ray tracing support a chance to shine

‘Battlefield V’ is the first game to use Nvidia’s ray tracing support, now available with the RTX 2080 and 2080 Ti graphics cards. The feature can, in an ideal scenario, make the game look better, but the performance hit may not be…
Deals

Get a Constant Contact free trial to boost your business marketing

Constant Contact offers one of the more robust email marketing platforms in the industry. And with a new 20 percent off deal, it's now cheaper than ever to get your hands on its service.
Computing

Changing file associations in Windows 10 is quick and easy with these steps

Learning how to change file associations can make editing certain file types much quicker than manually selecting your preferred application every time you open them. Just follow these short steps and you'll be on your way in no time.
Computing

Intel's dedicated GPU is not far off -- here's what we know

Did you hear? Intel is working on a dedicated graphics card. It's called Arctic Sound and though we don't know a lot about it, we know that Intel has some ex-AMD Radeon graphics engineers developing it.
Computing

Edit, sign, append, and save with six of the best PDF editors

There are plenty of PDF editors to be had online, and though the selection is robust, finding a solid solution with the tools you need can be tough. Here, we've rounded up best PDF editors, so you can edit no matter your budget or OS.
Computing

How to easily record your laptop screen with apps you already have

Learning how to record your computer screen shouldn't be a challenge. Lucky for you, our comprehensive guide lays out how to do so using a host of methods, including both free and premium utilities, in both MacOS and Windows 10.
Product Review

It's not the sharpest tool, but the Surface Go does it all for $400

Microsoft has launched the $400 Surface Go to take on both the iPad and Chromebooks, all without compromising its core focus on productivity. Does it work as both a tablet and a PC?
Computing

From beautiful to downright weird, check out these great dual monitor wallpapers

Multitasking with two monitors doesn't necessarily mean you need to split your screens with two separate wallpapers. From beautiful to downright weird, here are our top sites for finding the best dual monitor wallpapers for you.
Computing

Capture screenshots with print screen and a few alternative methods

Capturing a screenshot of your desktop is easier than you might think, and it's the kind of thing you'll probably need to know. Here's how to perform the important function in just a few, easy steps.
Computing

These cheap laptops will make you wonder why anyone spends more

Looking for a budget notebook for school, work, or play? The best budget laptops, including our top pick -- the Asus ZenBook UX331UA -- will get the job done without digging too deeply into your pockets.
Mobile

Vanquish lag for good with the best routers for gaming

Finding the best routers for gaming is no easy task. With so many out there, how do you know which to pick? We've looked at the many options available and put together a list of our lag-free favorites.
Computing

Stop your PC's vow of silence with these tips on how to fix audio problems

Sound problems got you down? Don't worry, with a few tweaks and tricks we'll get your sound card functioning as it should, and you listening to your favorite tunes and in-game audio in no time.
Deals

These Raspberry Pi 3 bundles will cover everyone, from coders to gamers

The Raspberry Pi 3 is a low-budget computing platform capable of doing just about anything. We rounded up a handful of the best Raspberry Pi 3 bundles to get you started on a variety of DIY projects.
Emerging Tech

Awesome Tech You Can’t Buy Yet: Folding canoes and ultra-fast water filters

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it sure is fun to gawk!