Security News > 2015 > June > Plaintext Credentials Threaten RLE Wind Turbine HMI (Threatpost)

A week after disclosing a cross-site request forgery vulnerability in small wind turbines manufactured by a company called XZERES, a security researcher has discovered a serious bug in the human-machine interface for turbines made by German company RLE International GmbH. Researcher Maxim Rupp discovered the vulnerability in the Nova-Wind Turbine HMI and reported it to the vendor. […]

News URL

http://threatpost.com/plaintext-credentials-threaten-rle-wind-turbine-hmi/113354