Explore a comprehensive analysis of cyber-physical attacks on industrial control systems in this conference talk from the Hack In The Box Security Conference. Delve into the intricacies of hacking chemical plants for competition and extortion, following a simulated Vinyl Acetate production plant attack scenario. Learn about the stages of cyber-physical attacks, from initial reconnaissance to final execution, and understand the challenges attackers face in manipulating industrial processes. Gain insights into the potential economic damage of such attacks and their implications for manufacturers and extortionists. Examine the intersection of IT and OT security, including vulnerabilities in SCADA systems, PLC internals, and process control automation. Discover defense strategies, detection opportunities, and process hardening techniques from both attacker and defender perspectives. Understand the significance of recent APT attacks and malware like Havex in the context of targeted SCADA-hacking capabilities. Benefit from the speaker's extensive experience in ICS security, including hands-on demonstrations using the Damn Vulnerable Chemical Process framework. Read more