"The Siemens SIMATIC WinCC SCADA systems...use hard-coded admin username / password combinations that users are told not to change...changing Siemens' hard-coded password will crash vulnerable SCADA systems"
You could not make that up! Using Windows, with its Swiss cheese history of security holes, is bad enough, but actually designing a system where the #1 rule of security (Thou shall not use well known user/password that world+dog knows) is deliberately broken!
Siemens should be hauled over red hot coals for that one. Fail for Windows, and fail for the muppet approach to security on systems that are intended for critical applications.