In Industrial Control Systems (ICS), security issues are getting more and\nmore attention. The number of hacking attacks per year is endless, and the\nattacks on industrial control systems are numerous. Programmable Logic\nController (PLC) is one of the main controllers of industrial processes. Since\nthe industrial control system network is isolated from the external network,\nmany people think that PLC is a safety device. However, virus attacks in recent\nyears, such as Stuxnet, have confirmed the erroneousness of this idea. In\nthis paper, we use the vulnerability of Siemens PLC to carry out a series of attacks,\nsuch as S7-200, S7-300, S7-400, S7-1200 and so on. We read the data\nfrom the PLC output and then rewrite the data and write it to the PLC. We\ntamper with the writing of data to achieve communication chaos. When we\nattack the primary station, all slave devices connected to the primary station\nwill be in a state of communication confusion. The attack methods of us can\ncause delay or even loss of data in the communications from the Phasor Data\nConcentrator (PMU) to the data concentrator. The most important thing is\nthat our attack method generates small traffic and short attack time, which is\ndifficult to be identified by traditional detection methods.
Loading....