System Attacks 119 to remotely execute commands; thus, saving the attacker time to crack that supposedly strong password of yours. For more information on this method, review the descrip- tion at www.metasploit.com/modules/exploit/windows/smb/psexec. SYSTEM ATTACKS Network attacks are not the only way to attack the utility company. Perimeter security controls such as firewalls and IPS/IDS made it harder to remotely attack organizations, so attackers shifted their attacks to other approaches, such as mali- cious e-mail attachments and Web sites. Vulnerabilities are frequently identified in local applications such as Web browsers and office productivity suites. Attackers can and have easily exploited these vulnerabilities to gain control of systems, which is why performing authenticated vulnerability scans to identify these vul- nerabilities is critical. SCADA Supervisory control and data acquisition (SCADA) systems are commonly used in