CitectScada risk is extremely unlikely
24 July 2008
Days after Core Security Technologies reported vulnerabilities in CitectScada, Citect has reassured its customers they are extremely unlikely to be at risk from potential security breaches found by CST in Windows-based control systems utilising ODBC technology, so long as their systems are protected by industry-standard security guidelines.
Citect and other Scada and Control vendors have been communicating potential vulnerabilities of control systems when they are connected to the internet for some time.
Citect’s Global CEO, Christopher Crowe, says, “The security of our customers’ control systems is of paramount importance to us. Though we have not had any reports of breaches, we are contacting our customers globally to confirm they have followed recommended network security measures. We have also developed a patch for those companies that might not be able to implement necessary network security measures promptly.”
Citect’s position on Scada and process control network security remains unchanged – Scada systems, like any business systems, must be protected from unauthorised access via the internet. They must be secured by robust protection including firewalls, intrusion detection systems and VPNs. There are basic security measures published by various organisations.
Contact Details and Archive...