Yes, this sounds just like all Foxboro users situation; running Windows and cannot change the Foxboro password although Fox says they have been working on this capability for several years now. Maybe this will put a fire under them, although I doubt it will be easy as they have been well aware of this obvious Security flaw for quite a while. It may take a direct hit before they spend the money and resources. Hope that hit isn't me. The only good news is that SCADA systems seem to be hit more often than DCS, maybe because there is more of it and it is more exposed. Jack Easley Sr. I&C Technician Luminant Power, Martin Lake Plant Phone 903.836.6273 jack.easley@xxxxxxxxxxxx -----Original Message----- From: foxboro-bounce@xxxxxxxxxxxxx [mailto:foxboro-bounce@xxxxxxxxxxxxx] On Behalf Of Johnson, David Sent: Tuesday, July 20, 2010 7:09 AM To: foxboro@xxxxxxxxxxxxx Subject: [foxboro] Siemens SCADA hacked Siemens is currently combating a worm that exploits Siemens windows based SCADA systems use of a common username and password. What a relief that the following could never happen to a windows based I/A system. http://www.pcworld.com/businesscenter/article/201442/after_worm_siemens_says_dont_change_passwords.html Something to think about. Regards, David ________________________________ Confidentiality Notice: The information contained in this message is private and confidential. This information is intended only for the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any use, review, dissemination, distribution, copying or action taken based on this message or its attachments, if any, is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email and delete or destroy all copies of this message and any attachments. Thank you. _______________________________________________________________________ This mailing list is neither sponsored nor endorsed by Invensys Process Systems (formerly The Foxboro Company). Use the info you obtain here at your own risks. Read http://www.thecassandraproject.org/disclaimer.html foxboro mailing list: //www.freelists.org/list/foxboro to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave Confidentiality Notice: This email message, including any attachments, contains or may contain confidential information intended only for the addressee. If you are not an intended recipient of this message, be advised that any reading, dissemination, forwarding, printing, copying or other use of this message or its attachments is strictly prohibited. If you have received this message in error, please notify the sender immediately by reply message and delete this email message and any attachments from your system. _______________________________________________________________________ This mailing list is neither sponsored nor endorsed by Invensys Process Systems (formerly The Foxboro Company). Use the info you obtain here at your own risks. Read http://www.thecassandraproject.org/disclaimer.html foxboro mailing list: //www.freelists.org/list/foxboro to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave