Visibility is just not enough to secure Operational Technology systems: it’s just the first step to secure your #OT environment against today's threats. You need a proactive, defense-in-depth approach☝️🛡️ #OTSecurity

https://www.darkreading.com/ics-ot/visibility-is-just-not-enough-to-secure-operational-technology-systems?utm_content=bufferd6f15&utm_medium=social&utm_source=bufferapp.com&utm_campaign=buffer

"ICS/OT Cybersecurity: Protection, IR, and Ransomware Insights," Join hosts Sulaiman Alhasawi and Shaker Hashlan, along with guest Engineer Ayed Al Qartah
https://www.youtube.com/watch?v=iKTSuJYfjyU #otsecurity

This picture tells you everything you need to know about the state of industrial information technology. #infosec #otsecurity

It's 2023 and there's a documentation CD in the box.

My topic " OT Hunt: Nordex NC2 " This is part of my research on hunting OT devices online.

https://zerontek.com/zt/2023/07/12/ot-hunt-nordex-nc2/

#icscybersecurity #otsecurity #windfarm

Researchers find new ICS #malware toolkit designed to cause electric power outages ☝️🤖#OTSecurity

https://www.csoonline.com/article/3697850/researchers-find-new-ics-malware-toolkit-designed-to-cause-electric-power-outages.html?utm_content=bufferae553&utm_medium=social&utm_source=bufferapp.com&utm_campaign=buffer#tk.rss_all

Am 1. Mai endete die Frist zur Umsetzung des #ITSicherheitsgesetz 2.0 bezüglich der Implementierung von Systemen zur #Angriffserkennung (SZA). Viele #KRITIS-Betreiber stehen unter Zugwang.

Ein Statement von Mirko Bülles, Armis

#Sicherheitsgesetz #ITSicherheit #ITSecurity #Cybersecurity #Cybersicherheit #kritischeInfrastruktur #SIEM #EndpointDetection #ManagedDetection #OTSecurity #Betriebssicherheit Kafka Kommunikation GmbH & Co KG

I've always asked myself who would be dumb enough to put unprotected OT systems on the internet with teamviewer installed.

Today I met one of these people, and he's become the star of a security escalation. Well done. #infosec #otsecurity

Referenced link: https://www.iotforall.com/the-tipping-point-for-ot-cybersecurity
Discuss on https://discu.eu/q/https://www.iotforall.com/the-tipping-point-for-ot-cybersecurity

Originally posted by IoT For All / @iotforall: http://nitter.platypush.tech/iotforall/status/1639266804160774145#m

Utilizing a risk-based approach to #OTsecurity and ensuring that your #cyberphysicalsecurity systems regularly assess risks and reduce vulnerabilities is essential. Daniel Bren discusses these key steps. https://www.iotforall.com/the-tipping-point-for-ot-cybersecurity

In my last post, I mentioned some cool things to come in 2023... so let's gooo! 🙌

In my research analyst role at SANS, I'm running a survey through March 28 on OT/ICS visibility-- and I want to hear from the community! We're looking for experts to share their perspective on IT and OT visibility, #industrial organizations and their SOCs, as well as detection capabilities across IT and OT networks. We'll share the findings in a public report released later this year so everyone can leverage the insights to help improve their OT visibility program.

Link to survey ➡ https://sans.org/u/1pqp

If driving our industry's detection capabilities is not enough incentive for you, don't worry, there's more! All respondents will be entered for a chance to win a $250 Amazon gift card for participating!

#otcybersecurity #otsecurity #ICSCybersecurity #soc #detection

Led by growth in Russia, more than 40% of global ICS systems faced malicious activity in the second half of 2022☝️👩‍💻 #malware #OTSecurity

https://www.darkreading.com/application-security/40-global-ics-systems-attacked-malware-2022

💥​ Another exciting milestone for @Claroty—xDome is now available on AWS Marketplace!

One of the many challenges in securing cyber-physical systems is the lack of visibility into OT assets and security events. Through our strategic partnership, customers can get real-time, in-depth asset discovery, vulnerability & risk management, threat detection, and network protection with @Claroty xDome – and simplified procurement, flexible pricing and terms, and control and governance through AWS Marketplace. Find out more: https://aws.amazon.com/marketplace/pp/prodview-oo4s35ynqwbiq?sr=0-1&ref_=beagle&applicationId=AWSMPContessa

#aws #claroty #otsecurity #iotsecurity #awsiot #awssecurity #awsmarketplace #xiot #awscloud #awspartners #ot #iiot

Increased connectivity, converging networks and aging equipment have made OT environments an attractive target for cyber criminals. Are you looking to advance your #OTSecurity strategy? Join @patrickcmiller, @amperesec CEO and other experts at the @fortinet irtual Operational Technology Security Summit to learn how to reduce your operational risk and increase cybersecurity resilience: https://events.fortinet.com/operationaltechnologysecuritysummit/2974533?ref=patrickmiller

I recently wrote about the current landscape of OT-dedicated cyber attacks, or lack thereof, and how this may change in the near future.

You can check it out below on the Orange Cyberdefense blog!

https://www.orangecyberdefense.com/global/blog/research/on-the-state-of-ot-cyber-attacks-and-traversing-level-35-the-artist-formerly-known-as-airgap

#icssecurity #otsecurity #ics #ot #cybersecurity

I recently wrote about the current landscape of OT-dedicated cyber attacks, or lack thereof, and how this may change in the near future.

You can check it out below on the Orange Cyberdefense blog!

#icssecurity #otsecurity #ics #ot #cybersecurity

https://www.orangecyberdefense.com/global/blog/research/on-the-state-of-ot-cyber-attacks-and-traversing-level-35-the-artist-formerly-known-as-airgap

Good morning! Today, the ICS Advisory Project is releasing a new dashboard to address the recent decision by CISA to stop updating previously released CISA ICS Advisories for Siemens Products. I received a few requests on how the ICS Advisory Project could help. This dashboard is the first attempt to address this gap. This dashboard is not meant to replace the Siemens Security Advisory webpage. They are the authoritative source, but I am simply hyperlinking the back to the text back to the Siemens and CISA ICS Advisories.

This dashboard lets you quickly filter and view which Siemens Security Advisory updates correlate to previously released CISA ICS Advisories for Siemens products. Siemens Security Advisories IDs (e.g., SSA-953464) provided the way to match which previously released CISA ICS Advisories as CISA tends to include them. In some cases, Siemens Security Advisories IDs are not provided with the CISA ICS Advisory for Siemens. These Siemens Security Advisories that do not correlate to previously released CISA ICS Advisories are linked to the Siemens Security Advisory.

Here is the link to access the Siemens to CISA ICS Advisory Dashboard: https://www.icsadvisoryproject.com/ics-advisory-dashboards/siemens-updates-to-cisa-advisories

#Siemens #ICS #OTsecurity

I am excited to speak at #Fortinet’s virtual Operational Technology Security Summit on March 1st along with other #OTSecurity experts to explore the risks and rewards of OT Digital Transformation. Register to attendhttps://events.fortinet.com/operationaltechnologysecuritysummit/2974533?ref=patrickmiller

Really good podcast on vulnerabilities in industrial environments this week, including the importance of more than just "availability" on the CIA triangle on the Cyber Wire Research Saturday edition: https://pca.st/vp31p0pi cc: @bittner #otsecurity

@‎Amperesec@mastodon.social CEO @patrickcmiller joins Aaron Crow on the Industrial Defender - PrOTect OT Cybersecurity Podcast to discuss the new FERC Order 887 on Internal Network Security Monitoring (INSM) and what it means for the NERC CIP Standards https://podcasts.apple.com/us/podcast/bonus-patrick-miller-ceo-of-amperesec/id1662081824?i=1000598327925

#NERCCIP #OTsecurity

Increased connectivity, converging networks and aging equipment have made OT environments an attractive target for cyber criminals. Are you looking to advance your #OTSecurity strategy? Join @patrickcmiller, @Amperesec@masotodon.social CEO and other experts at the @fortinet virtual Operational Technology Security Summit to learn how to reduce your operational risk and increase cybersecurity resilience:
https://buff.ly/3DHhBq3

OT engineers are reluctant to scan their ICS networks because they've had bad experiences with vulnerability and other network scanners.

We've researched why these scanners are destabilizing some devices and have created software that's now in use across over a dozen OT industries today.

Read about our research and what we're doing differently:

https://www.runzero.com/blog/how-to-safely-scan-ot-assets/

#infosec #otsecurity #CAASM