Shodan the search engine of connected objects
Made in USA, Shodan is a search engine that can identify all connected objects (webcams, automation tools, robots, hydro, IT companies …), but also to take control. An application that allows you to become aware of the risks of piracy, some will say. Which encourages hackers, say others.
The year-old site known as Shodan makes it easy to locate internet-facing SCADA, or supervisory control and data acquisition, systems used to control equipment at gasoline refineries, power plants and other industrial facilities. As white-hat hacker and Errata Security CEO Robert Graham explains, the search engine can also be used to identify systems with known vulnerabilities.
Besides opening up industrial systems to attacks that target unpatched vulnerabilities, the information provided by Shodan makes networks more vulnerable to brute-force attacks on passwords, many of which may still use factory defaults, CERT warned. The organization advised admins to tighten security by:
- Placing all control systems assets behind firewalls, separated from the business network
- Deploying secure remote access methods such as Virtual Private Networks (VPNs) for remote access
- Removing, disabling, or renaming any default system accounts (where possible)
- Implementing account lockout policies to reduce the risk from brute forcing attempts
- Implementing policies requiring the use of strong passwords
- Monitoring the creation of administrator level accounts by third-party vendors
Short for Sentient Hyper-Optimized Data Access Network, Shodan contains a wealth of information about routers, servers, load balancers and other hardware attached to the internet. Its database was built by indexing metadata contained in the headers the hardware broadcasts to other devices. Searches can be filtered by port, hostname and country.
Innovation about security will become more and more important, more costly, to take in account in the management of all the companies SI.