as a SCADA cybersecurity engineer it is nice to see some spotlight on our side of the network

You are my inspiration.... i am 11 years old in grade 5 .... l am learning networking it's very interesting to learn network hacking.... i tried my wifi adapter to keep it in monitor mode so many times but your videos made it very easy... you are my future....

This is my second interview with the professional hacker Occupy The Web. In this video we discuss OSINT and hacking industrial control systems (ics) using scada (supervisory control and data acquisition). Disclaimer: The opinions expressed by Occupy The Web in this interview are his own. Jump to 33:40 for Scada discussions. // MENU // 00:00 ▶ Introduction 00:41 ▶ Disclaimer 00:46 ▶ Intro With OccupyTheWeb 01:30 ▶ Ukraine Web Cam Hacking 03:55 ▶ Finding Russian Superyachts With OSINT 05:47 ▶ Why Track Russian Superyachts? 09:10 ▶ Russian Oligarchs 10:54 ▶ The KZbin Comments/OccupyTheWeb is Not CIA/NSA 12:37 ▶ It's Not About the US 13:09 ▶ Getting Started with OSINT and OSINT Tools 14:51 ▶ OSINT As a Career 15:22 ▶ Other Uses For OSINT 16:38 ▶ OSINT Can Find Anything About Anybody 18:21 ▶ Phones/How To Avoid Being Tracked 19:22 ▶ Turning Off Your GPS Doesn't Stop Tracking 20:35 ▶ Use a Burner Phone 23:30 ▶ Tips To Stay Anonymous Online 26:36 ▶ Different Physical Machine vs Virtual Machine for Privacy 28:08 ▶ Cellphone Networks - IP Addresses 29:36 ▶ Before We Talk About SCADA 33:49 ▶ SCADA Hacking As The Nuclear Option 38:25 ▶ Why Would It Be The Nuclear Option? 40:11 ▶ SCADA Hacking Example/The Colonial Pipeline 42:13 ▶ The Difference Between a Traditional IT System and a SCADA System 44:07 ▶ SCADA Protocols 46:03 ▶ SCADA Hacking Example/Stuxnet 49:06 ▶ Why Are These Systems Connected To The Internet In The First Place? 51:52 ▶ Almost All SCADA Systems Are Online 52:24 ▶ How To Find SCADA Systems Online 56:51 ▶ Why SCADA Attacks Aren't Simple 57:57 ▶ But There Is Still A Huge Risk For SCADA Attacks 01:01:39 ▶ How Companies Can Secure Their SCADA Systems 01:03:07 ▶ People Don't Do What They're Supposed To Do 01:05:00 ▶ Final Thoughts/Teaser For The Next Video With OccupyTheWeb 01:05:30 ▶ Closing/Leave a Comment! // OTW Discount // Use the code BOMBAL to get a 20% discount off anything from OTW's website: davidbombal.wiki/otw // Previous video // OTW video 1: kzbin.info/www/bejne/fabHimqOjtSoiM0 // David's SOCIAL // Discord: discord.com/invite/usKSyzb Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal KZbin: kzbin.info // Occupy The Web social // Twitter: twitter.com/three_cube // Occupy The Web books // Linux Basics for Hackers: amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: amzn.to/3qCQbvh // Occupy The Web Website / Hackers Arise Website // Website: www.hackers-arise.com/?afmc=1d Using OSINT to find Yachts: davidbombal.wiki/osintyachts Can the CIA or other Intelligence Agencies Track My Every Move: davidbombal.wiki/ciaphonestracking SCADA Hacking: The Key Differences between Security of SCADA and Traditional IT systems davidbombal.wiki/scada1 SCADA Hacking: Finding SCADA Systems using Shodan davidbombal.wiki/scada2 Shodan: Using Shodan to Find Vulnerable Russian SCADA/ICS Sites davidbombal.wiki/shodan SCADA Hacking: The Most Important SCADA/ICS Attacks in History www.hackers-arise.com/post/scada-hacking-the-most-important-scada-ics-attacks-in-history SCADA Hacking: SCADA/ICS Protocols (Profinet/Profibus) www.hackers-arise.com/post/2017/07/07/scada-hacking-scadaics-protocols-profinetprofibus Lots of Scada content: www.hackers-arise.com/scada-hacking // In the News // Feds Uncover a ‘Swiss Army Knife’ for Hacking Industrial Control Systems: www.wired.com/story/pipedream-ics-malware/ Ukrainian power grid 'lucky' to withstand Russian cyber-attack: www.bbc.co.uk/news/technology-61085480 An Unprecedented Look at Stuxnet, the World's First Digital Weapon www.wired.com/2014/11/countdown-to-zero-day-stuxnet/ // Other books // The Linux Command Line: amzn.to/3ihGP3j How Linux Works: amzn.to/3qeCHoY // MY STUFF // www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

Absolutely a gem of a video. I belong to Industrial control systems and have been working in the industry since 2005. Each and everything in the video regarding SCADA is explained wonderfully and the cyber security vulnerabilities involved. Most of the PLC manufacturers have tightened up their security portfolio by either collaborating with cyber security companies or developing their products. IEC 62443 is the standard being followed that addresses cybersecurity for operational technology in automation and control systems.

OTW needs to be booked monthly on this channel > Valuable information!

great content and finally someone very seriously in this article that was talked about. The tranquility of the guest to respond is someone who understands everything that was said. I was glued to the screen for a while hehe Congratulations, the world needs people who understand and master these tools, but who use them for good.

I just finished watching this interview and I must say, it was incredibly informative, Occupy The Web consistently delivers valuable insights by providing excellent real-world examples, which truly elevates the learning experience. It's always a pleasure to watch such content. 😀 Amazing work!

I'm a maintenance technician studying for the it field, I deal with plc's on a regular basis it never occurred to me that they could be a vulnerability, however during the discussion everything kinda clicked because of my experience with idustrial systems and plc's really enjoyed this one thank you.

Mr. David, I think you are a wonderful person. You are the only one who gives us all these lessons and helps us understand what the digital forest looks like. Thank you for these great seminars and we support you very much.

I can't believe D-Bomb is almost to 1mil. I am new to the field, but had to config an HP switch and set up to tftp to a Mac a few weeks back, and used one of your videos from like 9 years ago lol. Persistence has paid off, my friend. So cool to see

I think it's also important to highlight the friction between OT and IT business objectives during a cyber attack. Generally if an IT department is compromised they pull the pin on network connections and reformat. If OT and or ICS is compromised... And the services (generation / distribution) are still flowing, that takes precedence due to financial ramifications or damage to equipment.

Same in the US - my cell IP shows up several states away, but my home ISP will hit in the same town. Great stuff David!

I have been in computer science and IT field for about 4 years now But this video today just opened a whole new world (actually universe ) to me I didn't knew there is a lot of really interesting stuff going on in world that I can explore as well other than just being developer

After the first video, I read linux basics for hacker. It's a very good book. You will learn a lot. THe way it is presented makes you learn more and more. You never get bored reading the book. After finishing the book, I downloaded other books but never get engaged. I wish I could get the new book.

I am so glad you addressed these issues in these series of videos. It was quite disconcerting, and has raised my awareness concerning hacking by governments worldwide.

OTW round 2! I'm a pro member on his site and his courses are awesome! As always David you have the absolute best content on KZbin. No one else is even close.

That bit about you not editing people… you’re the man. I wish media had as much integrity as you.

Great thing to motivate the self to learn after hearing this type of educational content. Thanks David...

Great content as always! I have thought of starting a podcast discussing different types of networks. We are literally surrounded by networks yet we have no idea they're there, completely transparent to the mere mortals. A few examples are Ham radio networks. Theres a lot of not only voice communication going on but a lot of data like APRS, JS8, WSPR and a bunch of other protocols. Also satellite communications for different purposes like weather monitoring, flood warnings, body of water measurements and geological research. A lot of these accesible trough radio signals which can be picked up by an SDR dongle or a more advanced HackRF. All of these networks carry valuable information that can be useful.

Great content as always. Thank you David!

I've going through these and props to you David for keeping the opinions of your interviewees uncensored. This is the way to interview people. And you do a great job in remaining neutral too.

Interesting interview. Thank you David, for bring us this kind of content.

Yes Please! Make another video to continue on the subject of ICS systems, Thank you David.

The problem with the burner phone is we have used a warrant to get photos from Walmart because Tracfone was able to give us the point of sale then we were able to get Walmart to give us footage of the suspect at the register so we got a great description that led us to the suspect.

I'm 26 and on a new career path because of your videos and encouragement. Thank you ! This was super interesting. You beat netflix to what will surely be a future documentary.

I love your content. Thank you for making informative videos like this easily available.

OTW is the real deal. He has great books and does much to educate the public on Cyber education.

So needed for these times, great information guys.

This is fantastic David, one of the best interviews with a hacker I’ve ever seen!

Hi David, please add more content around cyber security of Industrial control systems. As this IT/OT convergence is going on, the lines between resources and skills are getting blurred. Collaboration among stakeholders has become so much important. But the traditional ways of working of either parties creates obstacles around implementation and execution. You may add some more interviews content of people who are working in both the fields and could shed some more light on the ongoing advancements, practices and information. Walker Reynolds of Industry 4.0 KZbin channel has some excellent content. Thanks and Regards

Thanks to your educational videos that did weldome me into cyber security field and it’s interesting more than I thought. Watched the first interview and it’s been an eye opener into the world that we living. Am a mechanical engineer car enthusiast and now into cyber security

Such great knowledge from this interview thank you David sir

Great interview, would like to see more :) Keep up the good work!

It's nice to see a fair and level approach to geopolicitics other than 'Russia bad US good'

Great interview, David! Thank you! I wish you will interview Occupytheweb again and even some other experienced hackers!

Hey Mr Bombal Love from South Africa Soweto🖤. It’s nice to have someone to look up too especially from a country where tech isn’t much embraced Thank you so much for your efforts.Inspires me as a 17 year old teen to pursue Ethical Hacking.

This was a great interview, I've read several of his books, great info.. the radio hacking bit at the beginning reminded me of Van Eck Phreaking.. very informative, thanks David!

Brilliant, have been waiting a long time for industrial network-related stuff, it helps in hardening the system. Thanks very much!

Already looking forward to the next video with Occupy the Web, interesting stuff!!!

dont hold anything back david we love learning we want to know the good the bad the ugly, i appreciate you trying to keep the conversation on OSINT and hacking but it definately is cool to hear all the other crazy things this guy knows we would a deep dive of this guys brain

Wow, i have been watching this video for 5min, and i'm already SUPER hooked. This is a amazing interview, Thank you very much for this! I want to learn more stuff about cyber security and hacking, so this is great for me :))

I can't believe I'm getting this content for free. Thanks David!!

It's very exciting to see you and occupy the web discussing these topics

These chats are excellent, thanks to you both!

This content is gold, thanks David

Thanks looking for scada based videos from many days keep continuing the series please make few more videos on OT/SCADA/ICS and plc hacking and more . Finally thanks for video

What a lawful abiding hacker. The ISP "knows" him. What a lad there be now 👏

Great interview. Have you thought about putting your interview content on Spotify? I'd love to download and listen in my car.

I love SCADA, I work with it fairly often.

david dont change a thing i like when this guy gets into different things that might be uncomfortable but its all things we love to learn and hear

Heyy man im new here and im loving your video's, keep the great work!!❤️

Excellent job both of you!! Thank you very much for the eye opener and free lesson. I share the same conclusion with you regarding the Ukraine-Russian war - No country should be allowed to run-over another country in today's world just because the country is stronger or greater. The mistakes of the past should stay with the past - this is our generation. No more barbaric acts. For sure, I will be one of your subscribed registered students shortly. Already bought one of your books from Amazon. I just needed to complete a couple of certifications in wireless engineering, then I'll be onboarding to your classes. My background would enable me to excel in the field of hacking.

awesome video, i just barely actually started understanding what, im doing when it comes to like the cyber security field and this was an awesome video that made me want to furher my education

This was really awesome. Looking forward to the follow-up!

Thanks David ! Your Video shares a lot of knowledge.

lots and lots of good knowledge, it opened my eyes to lot of things that i didn't know, thank you David

David I have learned a lot from your channel and this is no exception but I have a little taught about this thing about Russian oligarchs. It would be nice to make uncomfortable oligarchs from every powerful nation that starts and maintain unfair conflicts with smaller countries

Wireless IP security cameras often use default passwords. I have seen this first hand, because the installer assumed the IT department would change it.

Much love David I always get impacted by your content

I would LOVE to see more active Scada hacking demos from OTW! Would be badass to see him actually demonstrate on a few different targets how easy it really is.

David thank you so much for making this video. Not a bot

Thank you you are the best, David, great intrevview

I'm very happy to see how you conquering your successes and get ready to achive another level of success, believe me it felt so much pleasure to me bcz i started to watch your video's long long time ago, that David bombal and today's David has nothing different expect the success and the growth you achieved these days, by God Grace you will reach your every mile stone that want to. And I believe by June our family gonna reach 1m sub 🎉.keep it up David 👍

Wow this guy is very knowledgeable. Just bought his book yesterday.

I work as a Network Security Administrator for an energy company. For power plants we need SCADA online to communicate to regional systems to record our output and get paid for generation output. We literally couldn't operate as a company without it. As far as monitoring the network that is a 24/7 job for these locations because they need to run the plant.

This was very informative. Thanks!

good content with OTW, stumbled upon these videos as I was looking learn hacking and OTWs content is really good I recommend starting with his stuff as a beginner keep these videos coming

Thanks for doing this David.

Another great interview. 😀👍

I have a really hard time with web cams freezing up when brute forcing them and unless they are set with a default password or dictionary password I usually can’t throttle it enough to make brute force useful. Hopefully you can find useful exploits. So good luck my friend.

Love the content...GREAT STUFF!!!

Question for both David and OTW: what are your thoughts on DPN solutions like Deeper Network, Mysterium Network or Sentinel? Thank you for the amazing content

your videos are really great. I mean in just one video I gained sufficient information about the topic. Thanks Man.

Another fascinating interview. I'm studying for the OSCP and I'm beginning to think I want to specialise in ICS pen testing after trying out some of OTWs ICS Google dorks so this was perfect timing. This just seems a lot more interesting than pen testing a website tbh. I must reach out to him about attending his course. Thanks for recording this 👍🏻

Hope to discuss how to use VPS for the ethical hackers and how useful is that for them. Thank you for everything David.

This guy needs a podcast right now! :)

I used to be an I&E tech in the oilfield when I was in school for cybersecurity. Always wondered if someone could sit next to our frac location and hack the SCADA network. Would do much but if you took all pumps to 100% it’d part iron and kill people.

David, I've been an EE in the electric power industry for almost 45 years, working on engineering and design of the control systems your guest is discussing, and he's right on the mark regarding SCADA. But keep in mind (at least in the power industry) that it's not certain that access to SCADA could automatically result in anything more than a brief outage and inconvenience in many/most cases. Yeah, you could open and close circuit breakers and cut power to customers, etc., but unless they can find some way to cause significant damage (which would also require disabling the local protective devices) it may result in just a brief outage until technicians get there to restore everything. And at least in the power industry, it's very easy to disable the SCADA controls if a company is concerned about (or notices) outside access. Worst case, just have a technician drive up to the station and flip some switches and it's all in local mode. And also keep in mind that way back when SCADA was barely a thing, power systems operated very happily 24/7 with no need for networked SCADA. Local control systems and/or local operators controlled the equipment as things change, with nothing more than an occasional dial-up phone call in some locations to make things happen. And if something bad happens, you send a technician out to the station and he does his thing. As your guest mentioned, while SCADA definitely is more convenient and allows you to have a smaller staff, in many/most cases it may not be nearly as critical as we might think. The real concern, IMO, is the fact that these are actual, physical stations that are in every neighborhood, and anyone can just drive by and toss something over the fence. And it's been that way for many decades, even before there was an internet. So perhaps SCADA and internet isn't the real concern.

SUCHHHH A COOOL PODCAST DAVID !!! THIS IS AWESOME!!!

amazing and a different interview based on vast scenario

Very interesting and a great guest!

love this videos with OTW..... thank you David

Thanks for the informative videos..

Ok… turning into a darknet diaries. Love it David!

Great discussion. Big fan of three cube.

As a Process control engineer who's been tasked with security in the last few years. I've digested so much of this in order to attempt to secure my company's systems. All I'll say is that this statement is absolutely true.... most of this world's ICS's are at least 10 years behind their network in the form of security. It's far easier to destroy something through a PLC than it is through a network. With physical access, it's a gaurantee. If you're in a chemical plant, a nuclear plant, any plant that might have a turbine generator that uses steam or deals with caustic/acidic/toxic chemicals, this is something to be extremely concerned about. While a network hack might be more difficult, a cyber-attack onsite is almost a gaurantee. Scary stuff.

Great video David, thanks. Didn't the Siemens Simatic S7-300 PLC (the Stuxnet target) primarily use Profibus (as opposed to MODBUS)?

I can watch your videos like movies man i really like them i love this type of stuff 😍

dave thank u so much the point u pick the people u bring very interesting

I have had a long career of working with SCADA / PLC systems. Originally there was not much of a network infrastructure, and the little that existed was for business, education, and of course military systems. SCADA networks were all stand alone and used non IP types of networks and protocols, and as such not attackable from the outside at all. As time passed and business management demanded data from the industrial control systems they were connected and many became quite vulnerable to attack once IP technologies were made a part of the PLC tech. This was often due to the ignorance of the vulnerability of the systems to the internet on the part of those 'hooking in'. In my involvement the efforts were made to put the SCADA/PLC networks behind a very restrictive firewall. Usually a restricted handful of IP addresses were allowed to cross the firewall into the control system networks. I've worked a lot with the Modbus over IP protocols as well as BACnet. These systems have virtually no useful security in themselves so access to them MUST be controlled. One further point since the hacker mentioned Modbus is that Modbus is not a discovery type of protocol. It's a protocol that allows reading and writing to registers (numeric values or control bits ) and coils (on off digital positions).. You have to have further knowledge of how the PLC is connected to devices in the field which the protocol does NOT provide for you. Sure, one could randomly turn off coils, and inject values into registers and create mayhem, but if one wanted to specifically control a particular valve for example, or like the Stuxnet scenario where they wanted to spin up the centrifuges to a higher rpm, you need a lot of additional process data that's outside the actual PLC network..

Always great video with you David! Maybe it could be a good time to have an interview with Neal 'Mr. ex NSA" to tell us what he think about all that things that happen with Russia at this moment?

Always informative & inspiring

This is excellent! Thank you!

Finally a exact definition off the tcp/ip which has 255 address familys,next protocol family,next the port on the protocol used like tcp is number 6 with 65535 ports it can use to connect. Scada,modbus, are not designed to run in the AF_INET or Internet for those that have no BSD experience next the sensoring run on rj45 wires but don't use it for network but sensors,IP camera,Infrared,Pulses,serial

Wow this guys ability to sit very still without moving at all is very impressive ! 😂

I would imagine that most of these super yachts have satellite internet. How do you find those IPs? I tried on Shodan but didn't have much luck.

Possibly the recent (yesterday April 21st) events in Russia, were a SCADA or PLC attack on Tver defence institute and an industrial solvents plant on the same day.

Please make another video with him this is gold

Good point, no continuity, no experience no money to fix...

Great content David.