Date: May 17, 2017 By: Heather MacKenzie
Updated May 19, 2017
The WannaCry ransomware malware broke onto the world scene on Friday May 12, 2017 when it infected over 200,000 computers in more than 150 countries. Thankfully, the impact on manufacturing systems and critical infrastructure was relatively low. However, while WannaCry’s spread has been curtailed for now, new variants have been reported.
Immediate actions are to determine whether your systems are vulnerable by identifying computers and devices running Windows operating systems not updated with the latest security patches or communicating with the SMB1 protocol. If these situations exist, you need to execute a plan to mitigate and protect against these security weaknesses.
While we can take a deep breath that WannaCry did not shut down essential services such as power systems and water systems, the malware is certainly a very loud wake-up call Let’s look at what can be done immediately, and over time, to prevent and mitigate ransomware infections to industrial systems.
Date: May 12, 2017 By: Heather MacKenzie
Critical infrastructure cybersecurity is in the spotlight thanks to the new Presidential Executive Order on Cybersecurity. No matter your politics, most would agree that it’s good to see the U.S. government elevating the urgency for critical infrastructure cyber resiliency improvement.
Section 2 of the order calls out the need to improve cyber risk management efforts. If you work for an electric utility or other critical infrastructure operator you should be aware that recent advances in technology can greatly help in this area, and do so in a way that is simple and safe to implement.
Date: April 19, 2017 By: Thomas Nuth
Government, industry, system integrators and automation vendors all know that industrial cybersecurity needs to be improved. Yet, all too often both enterprise and industrial networks are still managed without a coherent security strategy. What’s the reason? First and foremost, there is a lack of industrial security expertise in the workforce. Secondly, up to now, technologies have focused on modularized solutions for either the enterprise network or the industrial environment, without paying attention to the integration between the two. The good news is that a new generation of solution helps overcome both the skills shortage and the IT/OT divide.
Date: March 20, 2017 By: Andrea Carcano
Over the past few years I have traveled around the world meeting with utility operators, oil and gas companies and manufacturers. It has been exciting to see the difference our SCADAguardian passive OT monitoring solution is making in terms of improving ICS cyber resiliency and operational productivity.
But, I have also heard how our technology can do better in terms of addressing some day-to-day cybersecurity, operational and reliability challenges. I am thus glad to be writing today about our first major release of SCADAguardian in 2017, and its improvements in the areas of asset management, vulnerability assessment and faster, easier deployment via dynamic learning.
Date: March 13, 2017 By: Edgard Capdevielle
A recently released study by the Ponemon Institute finds that 61% of oil and gas operators in the U.S. indicate that their organization’s ICS protection and security is inadequate. While the implementation of digitally connected industrial components is delivering business benefits, it has significantly increased cyber risk. Yet only 41% of companies continually monitor OT infrastructure to prioritize cyber threats and attacks.
Date: Feb 23, 2017 By: Kim Legelis
At the recent ARC Forum in Orlando, the automation community met to discuss pressing issues for the future. Cybersecurity was on top of the list of topics, with a full track led by ARC’s lead industrial security analyst Sid Snitkin. He led a panel that addressed an important new tool: ICS anomaly and breach detection solutions. Let’s look at the four critical capabilities ARC identified for these products, and how Nozomi Networks’ technology addresses them.
Date: Jan 26, 2017 By: Moreno Carullo
Last week Nozomi Networks had the privilege of hosting the first WG15 meeting of 2017. This group is responsible for establishing end-to-end cybersecurity standards for the world’s power system communication protocols. Read on to learn more about WG15 and how we advanced standards for encrypted communications for the power grids of the future.
Date: Jan 2, 2017 By: Heather MacKenzie
2016 ended with reports of 2 electric utility organizations, on different sides of the world (Ukraine and Vermont), citing cyberattacks or cyber infections. Both incidents highlight that corporate computer infections can threaten power systems and the need for robust ICS security in 2017. This article highlights the steps involved in the watershed 2015 Ukraine utility cyberattack as it moved from IT to OT systems and suggests ways of improving threat detection and mitigation.
Date: Dec 8, 2016 By: Heather MacKenzie
Today’s report of a cyberattack on German conglomerate ThyssenKrupp joins a list of high profile cyberattacks on industry where the goal has been to steal proprietary information (Dragonfly, Flame, Duqu) or disrupt business operations (Shamoon). While Industrial Control Systems (ICS) were not impacted this time, the incident is a reminder to ICS operators of the risks associated with Advanced Persistent Threats.
Date: Nov 16, 2016 By: Heather MacKenzie
There is positive momentum in the field of industrial cybersecurity and an exciting aspect of it is the energy that a new generation of ICS security expert / entrepreneur is bringing to the field. An example is Andrea Carcano, the co-founder and Chief Product Officer of Nozomi Networks. Find out how the technology he pioneered is making a difference in ICS security and reliability.