Group Purchasing
Group Purchasing

Out of Control II: Abusing MQTT and Sparkplug B for Distributed Kinetic Attacks

Out of Control II: Abusing MQTT and Sparkplug B for Distributed Kinetic Attacks (PDF, 0.59MB)Last updated: 09 Jun, 2026
Presented by:
Eric FornerMarco Ayala
Eric Forner & Marco Ayala

This presentation pulls back the curtain on how a protocol meant to simplify industrial data can instead become a powerful weapon in the wrong hands. This talk breaks down how Sparkplug B’s structure, shared namespaces, and centralized broker model can be twisted to inject false data, impersonate devices, and quietly seize influence over IIoT and industrial systems. Attendees will see, live, how manipulating state messages and control paths can ripple all the way to industrial environments, turning a “friendly” protocol into a very real threat to critical infrastructure.

SANS ICS Security Summit 2026