News October 19, 2022

CISA: Industrial Attacks Could Remotely Control Devices

2 min read - A joint federal Cybersecurity Advisory warns that certain advanced persistent threat actors can obtain full access to the industrial control system (ICS) and data acquisition (SCADA) devices. These systems, found in nearly every industrial sector, can then fall prey to…

Malware April 13, 2022

Where Everything Old is New Again: Operational Technology and Ghosts of Malware Past

7 min read - This post was written with contributions from IBM Security X-Force’s Michael Worley. Operational technology (OT) — the networks that control industrial control system processes — face a more complex challenge than their IT counterparts when it comes to updating operating…

News July 5, 2021

Amateur Critical Infrastructure Attacks Growing in Frequency, Relative Severity

3 min read - Low-sophistication operational technology (OT) attacks grew in frequency and relative severity over the previous few years, according to Mandiant. In doing so, they broadened the type of threat against which companies and governments need to defend their OT assets. Attackers…

Energy & Utility May 4, 2021

It’s an Operational Technology World, and Attackers Are Living in It

5 min read - In April 2021, the U.S. government announced a new effort to protect industrial control systems (ICS) from cyberattacks. For the cybersecurity community, the announcement may come as no surprise. Vulnerabilities in critical infrastructure such as ICS and the operational technologies…

Application Security April 14, 2021

The IT-OT Connection: How the Two Work Together

4 min read - Where hardware meets software, attackers can sneak in. More and more, threat actors are targeting Industrial Control Systems (ICS) and Operational Technology (OT). IBM X-Force found that the number of attacks against those types of assets increased by over 2,000%…

Risk Management February 19, 2021

Manufacturing Cybersecurity Threats and How To Face Them

3 min read - With manufacturing cybersecurity threats on the rise, what should companies know about protecting their digital assets in the future?  Risks to Security in Manufacturing The number of ransomware incidents involving the manufacturing sector increased 156% between the first quarters of…

Incident Response July 22, 2020

Securing Travel and Transportation Operations

7 min read - Transportation networks are foundational to our modern way of life. The current restrictions on global movement and the corresponding reduction in demand for travel and transportation services, while profound, are temporary. Forecasting future demand and capacity requirements is nearly impossible. But,…

Intelligence & Analytics April 30, 2020

Gain Visibility Into Operational Technology (OT) Environments With a Combined SOC

3 min read - Organizations can attain visibility into their operational technology (OT) environments by building out a combined OT/IT security operations center.

Endpoint March 4, 2020

Modernizing Threat Management for the Evolving Attack Surfaces of OT, IoT and IoMT

5 min read - The combination of digital transformation and the "Internet of Everything" is reshaping the modern landscape of OT, IoT and IoMT, meaning threat management must evolve in response.

Intelligence & Analytics March 2, 2020

Leverage ATT&CK for ICS to Secure Industrial Control Systems

3 min read - The core of MITRE ATT&CK for ICS provides an overview of the TTPs associated with threat actors that have carried out attacks against ICS systems.