9 August CISA initiative following President Biden’s memorandum of 28.07: CISA sets up latest cyber defense initiative to defend critical infrastructure – Industrial Cyber 10 August According to Dragos research, there are more than 400 public exploits in ICS and OT networks that can be used to penetrate and propagate: Over 400 public exploits, capable …
On 20 February this year I had the opportunity to publish a guest post on the ICS Cyber Security blog. In the post, I deduced that there might be a connection, based on a case that at first sight seems far removed from cyber security – the 8 January split of the single European electricity …
A post that has no cybersecurity relevance. Or maybe it does? II. Read More »
The latest guest post from the ICS Cyber Security blog on the SeConSys blog: ICS podcast-ek III – ICS Cyber Security blog Translated by DeepL
27 July ACER Guidelines on cybersecurity regulation: ACER publishes its Framework Guideline to establish a Network Code on Cybersecurity | www.acer.europa.eu 4 August DOE’s machine learning-based program to detect firmware vulnerabilities in the power system: DOE uses firmware machine learning to bolster electric grid cybersecurity (fedscoop.com) 4 August U.S. Idaho National Laboratory (INL) develops electrical …
4 August Russia added to the list of targets for Chinese attack? Chinese Cyberspy Group APT31 Starts Targeting Russia | SecurityWeek.Com 4 August Dragos’ findings and key lessons learned on ICT/OT vulnerabilities over the past 10+ years: Findings From Examining More Than a Decade of Public ICS/OT Exploits | Dragos Lessons Learned From Examining More …
In the “noise” of the cybersecurity-related events in the US in recent weeks, some publications that have received much less attention but are important in their potential impact may have been lost. In his 12 July post on the increasing frequency of ransomware attacks on critical infrastructure, Joe Weiss outlined a new way forward to …
Strengthening the protection of near-technology assets Read More »
3 August US DHS published additional measures to strengthen cybersecurity in pipelines: U.S. Department of Homeland Security Announces Additional Pipeline Cybersecurity Directive | Privacy & Information Security Law Blog (huntonprivacyblog.com) 3 August Dragos blog post on the importance and management of PLC key switches: Value of PLC Key Switch Monitoring to Keep Critical Systems More …
2021 Megjelent az Accenture 2021. évi kiberfenyegetés-felderítési jelentése: 2021 Cyber Threat Intelligence Report (accenture.com) Július A villamosművek előtt álló 3 legnagyobb kihívás a Dragos szerint: Top 3 Challenges Facing Electric Utilities – Dragos 2021.pdf
The latest guest post from the ICS Cyber Security blog on the SeConSys blog: Kínai kibertámadások érték az USA csővezeték-hálózatát egy évtizede? Translated by DeepL
According to a rather “clickbait”-suspicious title of a reference in the July 27 topICS, cyber-attackers could even use OTs as weapons (!) against humans by 2025. Given the evolution of cyber-attacks, it would be hard to argue that this threat is without foundation. Even the legendary Stuxnet attack of 2009-10, if one thinks about it, …
