BinaryEdge.ioBe Ready. Be Safe. Be Secure.

Focus on Cybersecurity, Data science and Machine

learning. Scale via software, automation and re-usable

technology.

HEADQUARTERS

ENGINEERING TEAM

ENGINEERING TEAM

ZÜRICH, SWITZERLAND

BINARYEDGE

OVERVIEW

Look at things that are on the internet and that shouldn’t be there

Scare you enough that if you see someone putting something on the in-ternet that they shouldn’t, you would stop them!

AGENDA

OBJECTIVE

WHO ARE WE?

Tiago is the CEO and Data necromancer at BinaryEdge however he gets to meddle in the intersection of data science and cybersecurity by providing his team with lovely problems that they solve on a daily basis.

Tiago Henriques

EXPOSING THINGS TO THE INTERNET

Types of exposure

People Organization

BINARYEDGE

INTERNET OF SHIT

MQTT

MQTT

MQTT Broker

Hospitals Paymentinformation

ChatsPower stations Co�ee makerCar GPSRadiation meters

Prisons MMORPG data SensorsAlarms Power meters Mobile phonestracking software

publish

subscribe

subscribe

subscribe

We found

37,514active

MQTT brokers

How it works and what is out there

MQTT - NUCLEAR

MQTT - HOSPITALS

MQTT - PATIENTS

MQTT - OWNTRACKS - PRIVACY?

MQTT - OWNTRACKS

MQTT - OWNTRACKS

MQTT - OWNTRACKS

MQTT - OWNTRACKS

MQTT - POWER

MQTT - SMS

MQTT - PHONE BACKUP

RDP, VNC, X11 - POWER

RDP, VNC, X11 - POWER

RDP, VNC, X11 - POWER

RDP, VNC, X11 - POWER

RDP, VNC, X11 - POWER

RDP, VNC, X11 - GAS

RDP, VNC, X11 - GAS

RDP, VNC, X11 - GAS

RDP, VNC, X11 - GAS

RDP, VNC, X11 - GAS

RDP, VNC, X11 - PRESCRIPTIONS

RDP, VNC, X11 - HOSPITALS

SCADA - WHAT IS?

SCADA (Supervisory Control and Data Acquisition is an industrial automation control system.

SCADA systems can be used in di�erent industries

Energy

Food and beverages

Power Oil and gas

RecyclingTransportation

Water

SCADA - PROTOCOLS

BACnet

47808S7

102csp

v4

2222

dnp3

20000

ATG

10001

modifcon

502enip

44818fox

1911omron

9600

proconos

20547codesys

1200

pcworx

1962

codesys

2455

SCADA

SCADA

SCADA

SCADA

SCADA

SCADA

NSA

DOUBLEPULSAR

Doublepulsar infection count: April 2017

date

num

ber o

f inf

ectio

ns

COLLABORATION

SECOND NSA TROJAN

23World count

BASIC RULES OF THE GAME

update/ patch

segregate/ �rewall

have a minimum of common sense

BE READY. BE SAFE. BE SECURE.

BinaryEdge AGFreigutstrasse 40, 8001 ZurichSwitzerland

info@binaryedge.iowww.binaryedge.io

+ 41 78 713 40 00

CONTIGENCY THREAT SAFE IRRELEVANT