hammer: The 1990's are calling and want there comment back.
cow: given whats happening was it worth connecting those computers to the internet ?
~
hammer: There are many good reasons for a powerplant to be on the internet. For example you may want to combine power predictions with weather data
cow: heres an idea, use a separate computer to get the weather... Im sure copying a few temps from a weather website isnt worth risking a cyber attack...
Even if its more than a few numbers, again safety first, use an ipad, and copy those numbers over...
~
hammer: The issue is not that it is connected to the internet, it is how it is connected and how the control system is isolated from say the enterprise system. For example you may want to connect a data diode to ensure data is only going outwards.
cow: or you coul djust be safe and not connect that computer to the net...
Now tell me given todays news would my recommedation have worked ?
Was it the end of the world not to connect those computers to the net ?
Of course not. Pretty sue a power plant can afford another computer to read the weather.
hammar: The problem tends not to be the internet, but the fact that organizations get lazy. The original Sandworm attack on Ukraine infrastructure was due to someone decided to bypass the firewall with a dedicated link (I'm guessing because all the security stuff was getting in the way of their day job)
cow: which is why one should make plans according to reality not some perfect planet where idiots dont exist.