{"id":17879,"date":"2017-08-02T06:12:08","date_gmt":"2017-08-02T10:12:08","guid":{"rendered":"https:\/\/www.kaspersky.com\/blog\/?p=17879"},"modified":"2019-11-15T06:45:55","modified_gmt":"2019-11-15T11:45:55","slug":"hacking-industrial-robots","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com\/blog\/hacking-industrial-robots\/17879\/","title":{"rendered":"Hacking industrial robots"},"content":{"rendered":"

As unpleasant as it is to see a ransomware message pop up on your monitor, WannaCry<\/a> or ExPetr\/NotPetya<\/a> are not worst-case scenarios. Researchers demonstrated far more physical cyberattacks at the Black Hat hacking conference<\/a>.<\/p>\n

Thousands of factories around the world employ robots whose mechanical manipulators move boxes around, drill through parts, and perform other actions by following preprogrammed routines. These robots are quite complex, consisting of a computer (used for monitoring by an operator), a controller, and a mechanical manipulator. A program with logical operations, such as \u201clift the box\u201d or \u201cturn the arm,\u201d is created on the control computer, and the controller breaks it down into a series of smaller steps.<\/p>\n

\"Industrial<\/p>\n

The process is intricate, with many factors. For example, a box needs to be lifted smoothly and only to a certain height, and the pressing force of the \u201cfingers\u201d must remain at a certain value to hold the transported part firmly. The controller stores configuration files that contain data for applying a certain voltage to servomotors at a clearly specified moment, thus allowing the manipulator to lift the box correctly. <\/p>\n

Managing cybersecurity<\/h2>\n

The developers of industrial robots have invested substantial efforts to ensure their inventions operate safely. Various safety devices, logical checks, and user manuals secure both factory and operators against physical damage and injury in case of operation problems or robot failures. At the same time, factory infrastructure is assumed to be \u201cfriendly\u201d; a robot fully trusts its control computer. <\/p>\n

However, that assumption is not always fair. Group of researchers from Polytechnic University of Milan and Trend Micro has discovered that some robots are directly connected to the Internet (for example, for receiving updates from the manufacturer or sending telemetry to company headquarters), or to an insufficiently isolated factory Wi-Fi network. This enables malefactors to discover robots with the help of a dedicated scanner. <\/p>\n

\"IRC5<\/p>\n

The robots are easy prey. With no encryption used when updating firmware, no digitally signed firmware at all, and default user names and passwords used, anyone who finds a robot\u2019s IP address can modify its configuration files and change its operation logic. <\/p>\n

Why hack a robot?<\/h3>\n

Depending on a hacker\u2019s goals, these opportunities can be used for both espionage (downloading existing configuration files to discover manufacturing secrets) and sabotage. Researchers have demonstrated a crafty attack on a robot that was supposed to draw straight lines (in real-life applications, it could perform electric-welding). Hacked, the robot slightly shifted its manipulator by just a fraction of a millimeter, an error that was imperceptible to the naked eye but would render the resulting product defective. The robot\u2019s programming wasn\u2019t modified; the only thing affected was the controller\u2019s parameters.<\/p>\n