A Windows worm, which specifically attacks the industrial management and control wasting business sector in several countries. It utilizes the so-called Quick-way-hole, that attacks a wide range of versions of Windows.
Siemens confirmed that they have a problem with the software WinCC. This Windows-based system is implemented in the Siemens product SCADA (Supervisory Control and Data Acquisition) used in automation processes in manufacturing worldwide.
Siemens Group key is now out and warn their customers not to change your password or make other changes to the system.
- We will very soon publish detailed instructions to customers. But this will not include advice about changing the default settings, since this may affect construction operations, writes Siemens spokesman Michael cramp in an e-mail to Infoworld.com.
It is not known how large scale attacks have, but analysts from Symantec estimates that it now is about 9,000 attacks a day.
The federal, U.S. security agency US-CERT has issued a recommendation, but this is not yet publicly available. US-CERT (United States Computer Emergency Readiness Team) is under Homeland Security, and allow usually only hear from them if they perceive a threat of danger to the country's security. Another government agency, GovernmentSecurity.org, has issued an open warning with instructions on what you should do.
Microsoft has been aware of issue since Friday, and now works full to rectify it. They describe the problem and point to possible solutions in the Security Advisory 2286198.
