Operational technology cyberattacks cause physical disruption with real-world consequences. A demonstration kit built on the Purdue model simulates data center cooling where failures risk safety. Google hacking and AI tools help attackers with zero OT knowledge discover exposed industrial systems through search queries identifying vulnerable interfaces.

Live demonstrations reveal attacks through packet analysis decoding Modbus communications. ARP spoofing creates denial of service freezing operator controls. Metasploit injections send malicious Modbus commands remotely stopping cooling fans and manipulating alarms, causing dangerous temperature increases while operators remain unaware.

The session will cover:

• How attackers identify exposed OT assets and exploit insecure protocols to gain control;
• Analyzing packets revealing vulnerable industrial protocols;
• What this means for real-world safety, resilience and network design, and how to prevent similar attacks.