$1:
Breached water plant employees used the same TeamViewer password and no firewall
The Florida water treatment facility whose computer system experienced a potentially hazardous computer breach last week used an unsupported version of Windows with no firewall and shared the same TeamViewer password among its employees, government officials have reported.
. . .
According to an advisory from the state of Massachusetts, employees with the Oldsmar facility used a computer running Windows 7 to remotely access plant controls known as a SCADA—short for “supervisory control and data acquisition”—system. What’s more, the computer had no firewall installed and used a password that was shared among employees for remotely logging in to city systems with the TeamViewer application.
https://arstechnica.com/information-tec ... -firewall/
The only way to secure infrastructure is to make it air-gapped from the Internet. Or at least use a basic firewall.
CKA Moderator 
