It was an AS400 according to the full report
Behind the scenes, KWC was a likely candidate for a data breach. Its internet- facing perimeter showed several high-risk vulnerabilities often seen being exploited in the wild. The OT end of the water district relied heavily on antiquated computer systems running operating systems from ten-plus years ago. Even more concerning, many critical IT and OT functions ran on a single AS400 system. KWC referred to this AS400 system as its "SCADA platform." This system functioned as a router with direct connections into several networks, ran the water district’s valve and flow control application that was responsible for manipulating hundreds of Programmable Logic Controllers (PLCs), housed customer PII and associated billing information, as well as KWC’s financials.. Moreover, only a single employee was capable of administering it. If a data breach were to occur at KWC, this SCADA platform would be the first place to look. On Mar 5, 2016, at 5:47 PM, Phil Smith <[email protected]<mailto:[email protected]>> wrote: http://www.networkworld.com/article/3040575/security/rsa-verizon-details-data-breaches-from-pirates-to-pwned-water-district.html Not sure I believe this was a "mainframe"; I mean, not impossible, but it seems unlikely that anyone controls SCADA systems using z/anything. More likely it was NonStop or something else is my guess. But that's only a guess... ...phsiii ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
