Collaborate Disseminate
Help Net Security is in Israel this week for Cybertech Tel Aviv 2023, talking to the key players from the cybersecurity industry and businesses from a wide range of sectors, who gathered to exchange knowledge, to network, and learn about technological … Continue reading Video walkthrough: Cybertech Tel Aviv 2023
Waterfall Security Solutions announced a collaboration agreement with Yokogawa, a provider of industrial automation and test and measurement solutions. This new collaboration will make Waterfall’s Unidirectional Gateway cybersecurity products and… Continue reading Waterfall Security Solutions partners with Yokogawa to improve industrial security
The Apache Log4j saga continues, as several new vulnerabilities have been discovered in the popular library since Log4Shell (CVE-2021-44228) was fixed by releasing Log4j v2.15.0. There’s CVE-2021-45046, a DoS/RCE flaw that was fixed in v2.16.0, t… Continue reading The Log4j saga: New vulnerabilities and attack vectors discovered
Operational Technology (OT) networks are at risk from the recently-announced Apache Log4j (CVE-2021-44228) vulnerability. On the surface, it is not clear why this should be. The vulnerability affects millions of web servers, allowing remote attackers t… Continue reading The impact of the Log4j vulnerability on OT networks
Waterfall Security Solutions and NanoLock Security announced a partnership to deliver advanced OT security for energy utilities and industrial internet of things (IIoT) deployments worldwide. This partnership unites NanoLock’s zero-trust¸ device-level … Continue reading Waterfall Security Solutions and NanoLock Security to deliver OT security
Waterfall Security Solutions and Romanian systems integrator HTSS announced their successful collaboration to deploy Unidirectional Security Gateways to protect a major European power generation customer. This partnership demonstrates HTSS’ and W… Continue reading Waterfall Security Solutions partners with HTSS to protect a European power generation customer
The big news in critical infrastructure security is the ransomware-triggered shutdown of the Colonial gasoline pipeline – the largest such pipeline in the USA. The attack has been attributed to the DarkSide ransomware group. The group subsequentl… Continue reading What the pipeline attack means for critical infrastructures
The FireEye Mandiant team has discovered multiple threat actors exploiting a zero-day vulnerability in Pulse Secure VPN appliances. The attack infrastructure is very sophisticated. The attacks persist in the VPN appliances, even across software updates… Continue reading Critical infrastructure implications of the Pulse Secure multi-factor authentication bypass
The cyber attack that tried to poison the drinking water system in Oldsmar, Florida is similar to last year’s attack on small water systems in Israel. Both attacks tried to tamper with water treatment facilities to produce drinking water containi… Continue reading Misplaced expectations securing water treatment systems
The recent SolarWinds software supply chain breach is a clear indication that strong OT cybersecurity is a must-have in today’s threat environment. Waterfall’s technologies have long enabled integration between OT networks and enterprise networks witho… Continue reading SolarWinds is the tip of the iceberg