On Monday, Dillon Beresford, an analyst for security auditing firm NSS Labs, took aim at Siemens in a message to a mailing list devoted to supervisory control and dataacquisition (SCADA) software used in physical systems like power plants and factories.