How a Security by Design Approach Might Have Stopped the Florida Water Facility HMI Attack
Jeremy Morgan, Principal Solutions Engineer
How using a security by design approach could have lessened the severity of the attack on the Florida water treatment facility or even prevented it altogether. …
Why Passive Network Monitoring Isn’t Truly “Passive”
The reasons why OT passive monitoring solutions are not truly passive and alternative cybersecurity and compliance technologies to consider. …
What Does the SolarWinds’ Sunburst Backdoor Mean for ICS?
While SolarWinds’ Sunburst backdoor is primarily an “IT problem”, what does it mean for ICS and supply chain security? …
Establishing OT Cybersecurity Fundamentals with the 20 CIS Controls
The 20 CIS Controls help security practitioners build the foundation of a sound OT cybersecurity program. Learn what these controls are and how they can benefit you. …
Making Smarter Risk Management Decisions with OT Endpoint Data
Industrial control system environments pose unique risk management challenges. Having accurate OT endpoint data is critical to make smarter decisions. …
CodeMeter Vulns: Why Complete Software Inventory Data Is Critical for ICS
CodeMeter is a software licensing program that is a critical component to the operation of many ICS. Severe vulnerabilities were recently found in this program. …
CVE-2020-1350 “Wormable” Flaw in Microsoft Windows Server Could Cause Major Issues for ICS/OT World
Every Microsoft Windows Server OS back to 2003 is impacted by CVE-2020-1350. Even worse, it's being a called a “wormable” flaw, meaning it can transmit system to system all by itself. No emails, no user interaction, just good old fashioned TCP/IP. …