Archive for the ‘OT/ICS’ Category

Most CIOs and CISOs underestimate the risk of an OT breach

‚ÄúNot only do enterprises rely on OT, the public at large relies on this technology for vital services including energy and water. Unfortunately, cybercriminals are all too aware that¬†critical infrastructure security¬†is generally weak. As a result, threat actors believe ransomware attacks on OT are highly likely to pay off,‚ÄĚ said¬†Skybox Security¬†CEO¬†Gidi Cohen. ‚ÄúJust as evil […]

Leave a Comment

14 Flaws in NicheStack Leave PLCs, OT Controllers Vulnerable

Considering that OT environments are increasingly in the crosshairs of attackers, the 14 vulnerabilities that JFrog and Forescout Research Labs recently discovered in NicheStack should make the likes of Siemens, Schneider Electric and Rockwell Automation take notice‚Äďand action. Millions of programmable logic controllers (PLCs) and controllers from more than 200 device makers use NicheStack, a common, proprietary […]

Leave a Comment

Is 85% of US Critical Infrastructure in Private Hands?

When this problem is discussed, people regularly quote the statistic that 85% of US critical infrastructure is in private hands. It‚Äôs a handy number, and matches our intuition. Still, I have never been able to find a factual basis, or anyone who knows where the number comes from. Paul Rosenzweig investigates, and reaches the same conclusion. […]

Leave a Comment

Security at Bay: Critical Infrastructure Under Attack

The attack perpetrated by hackers on oil company Colonial Pipeline highlights the dangers that are facing Industrial Control Systems (ICS) and the need for change in the information security landscape, The attack took place on May 7th where hackers used ransomware to cripple the defense of the company. As a result, all operations were forced to shut […]

Leave a Comment

State of OT/ICS CyberSecurity

State of OT/ICS Cybersecurity 2019 [Infographic via SANS Institute] State of ICS/OT CyberSecurity: pdf Guide to Industrial Control Systems (ICS) Security Independent Study Pinpoints Significant SCADA/ICS Security Risks Cyber-Security and Governance for Industrial Control Systems NIST Releases Cybersecurity Guide for Energy Sector to Improve Operational Technology NSM/threat hunting in OT/ICS/SCADA environments The Convergence (and Divergence) […]

Comments (2)