An energy company operates multiple oil and gas transportation pipelines and remote monitoring systems. With the deep integration of industrial control systems and IT networks, the exposure of these systems has significantly increased. To prevent threats from cyberattacks on critical infrastructure, the company introduced NetEye for penetration testing.
Technicians used NetEye’s “Proxy Interception“ feature to capture the communication traffic between the monitoring system and the control center in real-time, discovering that some communications did not use encrypted protocols, posing a risk of man-in-the-middle attacks. Subsequently, through the “Vulnerability Risk Scanning“ module, multiple weak password accounts and unauthorized access interfaces were identified. The team utilized the “Brute Force Testing“ feature to simulate attacker behavior, successfully verifying that some accounts were vulnerable to brute-force attacks.
To further validate the exploitability of the vulnerabilities, the team used the “Replay“ feature to modify and resend critical requests, simulating a scenario where an attacker alters control commands, and discovered flaws in the system’s authentication and request validation. Ultimately, based on the detailed report generated by NetEye, the company strengthened its access control mechanisms, enabled mutual authentication, and activated TLS encryption for all communication links, effectively enhancing the overall security level.