SCADA industry debates flaw disclosure

This story caught my eye, not because it was yet another vulnerability article, but because it deals with systems that power the critical infrastructure behind industries like power plants and hospitals. The problem it seems is that the industry has been slow to adapt to the changing security environment because they feel they are apart from it. While most of these systems are isolated from the internet, that doesn’t mean they can’t be attacked. Hopefully the dialog between security researchers and the industry will help to foster a better effort from these vendors. Imagine a hacker taking out power for an entire city, or even a region. The consequenses could be quite severe.