DEF CON 28 Safe Mode ICS Village – Korotin Motspan’s ‘On The Insecure Nature Of Turbine Control Systems’

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization’s DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!
Permalink
The post DEF CON 28 … Continue reading DEF CON 28 Safe Mode ICS Village – Korotin Motspan’s ‘On The Insecure Nature Of Turbine Control Systems’

DEF CON 28 Safe Mode ICS Village – Chris Krebs’ ‘Keynote’

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization’s DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!
Permalink
The post DEF CON 28 … Continue reading DEF CON 28 Safe Mode ICS Village – Chris Krebs’ ‘Keynote’

DEF CON 28 Safe Mode ICS Village – Ben Gardiner’s ‘PowerLine Truck Hacking 2TOOLS4PLC4TRUCKS’

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization’s DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!
Permalink
The post DEF CON 28 … Continue reading DEF CON 28 Safe Mode ICS Village – Ben Gardiner’s ‘PowerLine Truck Hacking 2TOOLS4PLC4TRUCKS’

DEF CON 28 Safe Mode ICS Village – Austin Scott’s ‘5 Quick Wins For Improving ICS Cybersecurity Posture’

Many thanks to DEF CON and Conference Speakers for publishing their outstanding presentations; of which, originally appeared at the organization’s DEFCON 28 SAFE MODE Conference, and on the DEF CON YouTube channel. Enjoy!
Permalink
The post DEF CON 28 … Continue reading DEF CON 28 Safe Mode ICS Village – Austin Scott’s ‘5 Quick Wins For Improving ICS Cybersecurity Posture’

How to Best Secure the Industrial Network for EMEA Organizations

You don’t have to search very far in the news to see stories of websites being hacked and customer details being stolen. Stories about incidents involving industrial control systems (ICSes) and operational technology (OT) environments aren’t so common…. Continue reading How to Best Secure the Industrial Network for EMEA Organizations

3 Zones that Require Network Security for Industrial Remote Access

By now, we have a good understanding of what secure remote access (SRA) is and why organizations might choose to enable it for their OT environments. We also know that securing IT-OT collaboration, leveraging guidance from best practice frameworks and … Continue reading 3 Zones that Require Network Security for Industrial Remote Access

New ‘MontysThree’ Toolset Used in Targeted Industrial Espionage Attacks

Researchers uncovered a new toolset they’ve dubbed “MontysThree” that has played a role in targeted industrial espionage attacks stretching back to 2018. In the summer of 2020, Kaspersky Lab discovered that an unknown actor had been using a modular C++… Continue reading New ‘MontysThree’ Toolset Used in Targeted Industrial Espionage Attacks

Zerologon: Tripwire Industrial Visibility Threat Definition Update Released

Today, we released a Threat Definition Update bundle for our Tripwire Industrial Visibility solution to aid in the detection of Zerologon. Otherwise known as CVE-2020-1472, Zerologon made news in the summer of 2020 when it received a CVSSv3 score of 10… Continue reading Zerologon: Tripwire Industrial Visibility Threat Definition Update Released

NERC Publishes Practice Guide for assessing SVCHOST.EXE

One of our customers (you know who you are, thanks!) made us aware of a new practice guide titled “ERO Enterprise CMEP Practice Guide: Assessment of SVCHOST.EXE” published exactly two weeks ago today on September 15th, 2020. NERC seldom releases guidan… Continue reading NERC Publishes Practice Guide for assessing SVCHOST.EXE

Joint “CYPRES” Report on Incident Response Released by FERC

Earlier this month, the Federal Energy Regulatory Commission (FERC) published a joint report entitled “Cyber Planning Response and Recovery Study” (CYPRES) in partnership with the North American Electric Reliability Corporation (NERC) and eight of its … Continue reading Joint “CYPRES” Report on Incident Response Released by FERC