{"id":3492,"date":"2018-06-18T11:01:03","date_gmt":"2018-06-18T11:01:03","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/"},"modified":"2018-06-18T11:01:03","modified_gmt":"2018-06-18T11:01:03","slug":"pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/","title":{"rendered":"Pwned with &#8216;4 lines of code&#8217;: Researchers warn SCADA systems are still hopelessly insecure"},"content":{"rendered":"<p><strong class=\"trailer\">BSides<\/strong> Industrial control systems could be exposed not just to remote hackers, but to local attacks and physical manipulation as well.<\/p>\n<p>A presentation at last week&#8217;s BSides conference by researchers from INSINIA explained how a device planted on a factory floor can identify and list networks, and trigger controllers to stop processes or production lines.<\/p>\n<p>The talk \u2013 <em>Hacking SCADA: How We Attacked a Company and Lost them \u00a31.6M with Only 4 Lines of Code<\/em> \u2013 reviewed 25 years of industrial control kit, going back to the days of proprietary equipment and X21 connections before discussing proof-of-concept attacks.<\/p>\n<p>Mike Godfrey, chief exec at INSINIA, told <em>El Reg<\/em> that industrial control kit has long been developed with safety, longevity and reliability in mind. Historically everything was &#8220;air-gapped&#8221; but this has changed as the equipment has been adapted to incorporate internet functionality. This facilitates remote monitoring without having to physically go around and take readings and check on devices, which are often as not in hazardous environments.<\/p>\n<p>Godfrey explained that security has never been a design criteria for industrial control kit and this hasn&#8217;t changed with the advent of IoT in the domain of SCADA systems. As a result, issues such as default hard-coded credentials and lack of encryption abound.<\/p>\n<blockquote class=\"pullquote\" readability=\"7\">\n<p>Worse yet, most systems are running either old or hopelessly obsolete versions of Windows. Most terminals are running Windows 7 but some run Windows 98&#8230;<\/p>\n<\/blockquote>\n<p>Worse yet, most systems are running either old or hopelessly obsolete versions of Windows. Most terminals are running Windows 7 but some run Windows 98, according to Matt Carr, CTO of INSINIA. The Windows 98 terminals are thus vulnerable to Back Orifice, a vintage hacking tool that dates back to the 1990s.<\/p>\n<p>&#8220;Industrial control setups certainly don&#8217;t have the maturity of enterprise environments,&#8221; Godfrey said with some understatement.<\/p>\n<div class=\"CaptionedImage Border width_85\" readability=\"7\"><a href=\"https:\/\/regmedia.co.uk\/2018\/06\/15\/ics_hacking.jpg\" target=\"_blank\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2018\/06\/15\/ics_hacking.jpg?x=648&amp;y=500&amp;infer_y=1\" alt=\"Industrial control system hacking is serious. M'Kay [pic: John Leyden]\" title=\"SCADA experts from INSINIA talk industrial security at BSides London\" height=\"500\" width=\"648\"\/><\/a><\/p>\n<p class=\"text_center\">INSINIA talk industrial security at BSides London<\/p>\n<\/div>\n<p>Industrial control systems run water supply, power grid and gas distribution systems as well as factories, building management systems and more. INSINIA has developed test rigs to assess the effectiveness of real-world systems that the security consultancy is asked to check. Testing attacks such as spoofing on real-world systems is likely to bring things down, Godfrey added.<\/p>\n<p>Denial-of-service in industrial control environments is easy and fuzzing (trying a range of inputs to see which causes an undesigned effect) also offers a straightforward way to uncover hacks.<\/p>\n<p>INSINIA has developed a device that automatically scans networks and shuts down components. The &#8220;weaponised&#8221; Arduino micro-controller looks like a regular programmable logic controller (PLC) to other devices on the network. If it is physically planted on a targeted environment, it can quickly enumerate networks before sending stop commands. It can &#8220;kill industrial processes with only four lines of code&#8221;, according to Godfrey.<\/p>\n<p>He added that it wouldn&#8217;t be possible to apply a simple reset in the event of such an attack, so a targeted environment could be taken down again and again.<\/p>\n<p>BSides presentations are often accompanied by the release of proof-of-concept code but the software here exploits systemic vulnerabilities that are unlikely to be resolved any time soon, so INSINIA is not releasing the tech even to its ethical hacker peers.<\/p>\n<p>Godfrey said that for industrial control plants, keeping the processes running is the prime concern. He claimed many plants &#8220;self-insure&#8221; to cover for the losses and disruption caused by security incidents, which he said already happen on an under-publicised scale.<\/p>\n<p>The wider security community has recognised the risk posed to industrial control systems from malware in the wake of high-profile attacks such as the <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2016\/12\/02\/accused_iranian_disk_wiper_returns_to_destroy_saudi_orgs_agencies\/\">Shamoon assault<\/a> on Saudi Aramco and the <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2016\/03\/04\/ukraine_blackenergy_confirmation\/\">BlackEnergy attacks<\/a> on electricity distribution facilities in Ukraine.<\/p>\n<p>The famous <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2012\/06\/01\/stuxnet_joint_us_israeli_op\/\">Stuxnet attack<\/a> on Iran&#8217;s uranium-enrichment facilities showed not only how SCADA devices might be hacked to cause real-world effects but how sensors can be fooled by faked logs so staff are none the wiser.<\/p>\n<p>INSINIA&#8217;s research shows how something similar might be achieved against a wider range of potential targets, provided that a rogue micro-controller \u2013 such as that developed by the UK-based security consultancy \u2013 is planted in a targeted environment.<\/p>\n<p>That&#8217;s aside from the large number of industrial control systems <a target=\"_blank\" rel=\"nofollow\" href=\"https:\/\/twitter.com\/porthunter\/status\/1005257444858171393\">exposed<\/a> to the internet, which are easily found using Shodan, the search engine for the IoT.<\/p>\n<h3 class=\"crosshead\"><span>Not even a safe is safe<\/span><\/h3>\n<p>Part of INSINIA&#8217;s BSides London demo showed how home and small office safes could be opened using only an <a target=\"_blank\" rel=\"nofollow\" href=\"https:\/\/twitter.com\/mikeghacks\/status\/730713983892766720\">electromagnet and a sock<\/a>. The trick works because the solenoids \u2013 a kind of electromagnet that generates a controlled magnetic field \u2013 inside the safe can be manipulated to move the pins that keep a safe locked.<\/p>\n<p>Magnetic interlocks in industrial control kit can be undone in a comparable way. Laser-based sensors, meanwhile, can be defeated with a mirror. The BSides demo also featured a demonstration of taking apart supposedly secure RJ45 connectors using two spoons and without leaving any obvious signs of tampering. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1759\/shttp:\/\/www.mcubed.london\/\">Minds Mastering Machines &#8211; Call for papers now open<\/a><\/p>\n<p>READ MORE <a href=\"http:\/\/go.theregister.com\/feed\/www.theregister.co.uk\/2018\/06\/18\/physically_hacking_scada_infosec\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>How Shamoon and Stuxnet et al ran riot BSides\u00a0 Industrial control systems could be exposed not just to remote hackers, but to local attacks and physical manipulation as well.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":3493,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-3492","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Pwned with &#039;4 lines of code&#039;: Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Pwned with &#039;4 lines of code&#039;: Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-06-18T11:01:03+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"648\" \/>\n\t<meta property=\"og:image:height\" content=\"500\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Pwned with &#8216;4 lines of code&#8217;: Researchers warn SCADA systems are still hopelessly insecure\",\"datePublished\":\"2018-06-18T11:01:03+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/\"},\"wordCount\":836,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/\",\"name\":\"Pwned with '4 lines of code': Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg\",\"datePublished\":\"2018-06-18T11:01:03+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/06\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg\",\"width\":648,\"height\":500},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Pwned with &#8216;4 lines of code&#8217;: Researchers warn SCADA systems are still hopelessly insecure\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Pwned with '4 lines of code': Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/","og_locale":"en_US","og_type":"article","og_title":"Pwned with '4 lines of code': Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-06-18T11:01:03+00:00","og_image":[{"width":648,"height":500,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Pwned with &#8216;4 lines of code&#8217;: Researchers warn SCADA systems are still hopelessly insecure","datePublished":"2018-06-18T11:01:03+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/"},"wordCount":836,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/","url":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/","name":"Pwned with '4 lines of code': Researchers warn SCADA systems are still hopelessly insecure 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg","datePublished":"2018-06-18T11:01:03+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/06\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure.jpg","width":648,"height":500},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/pwned-with-4-lines-of-code-researchers-warn-scada-systems-are-still-hopelessly-insecure\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Pwned with &#8216;4 lines of code&#8217;: Researchers warn SCADA systems are still hopelessly insecure"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/3492","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=3492"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/3492\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/3493"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=3492"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=3492"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=3492"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}