Security software researcher Billy Rios reported an authentication bypass flaw in Siemens’ industrial control system. Rios says the default password for a number of services on these Siemens systems was “100” Rios: “I’ve been patiently waiting for a fix for the issue which affects pretty much every Siemens SIMATIC customer” Experts say IT security in industrial control systems remains, if not immature — awkward — awkward. In an email response to CSOonline, Siemens acknowledged that they knew of the flaws.”]
Source: https://www.csoonline.com/article/2130536/more-scada-security-flaws-surface.html