Steel plants run for years without a shut down, so this was a large scale incident as the had to shut it down because of major damage.
Not related to the plant in Germany in any way, just to get you an idea how some other steel plants operate: C# WinForm based GUI control room app and Java based server app on Windows server. The server controls the various SPS. Several steel plants around the world were build with that software setup and it was not designed to be connected to the internet.
The register has speculation that it was a Thyssen Krupp plant in Brazil I susepct that if it had been actualy ingermany there might have been better security.
Nope. Just last year, Germany's biggest IT magazine ran an article about hundreds of industrial systems having remote control UIs with insufficient security (unencrypted login, default passwords) exposed to the internet.
Steel plants run for years without a shut down, so this was a large scale incident as the had to shut it down because of major damage.
Not related to the plant in Germany in any way, just to get you an idea how some other steel plants operate: C# WinForm based GUI control room app and Java based server app on Windows server. The server controls the various SPS. Several steel plants around the world were build with that software setup and it was not designed to be connected to the internet.