Connect with us

Hi, what are you looking for?



Dragos Offering Free OT Cybersecurity Technology to Small US Utilities

The Dragos Community Defense Program is offering free OT cybersecurity software to small electric, water, and natural gas utilities in the US. 

Industrial cybersecurity firm Dragos on Wednesday announced that it’s offering free operational technology (OT) security software and other resources to small electric, water and natural gas utilities in the United States through its Community Defense Program.

The Community Defense Program was launched as a pilot last year and it’s now being expanded, enabling US-based utilities that have an annual revenue of less than $100 million to benefit from Dragos technology at no cost.

Participating utilities will be given indefinite access to the Dragos Platform, which provides OT network visibility and monitoring capabilities, enabling organizations to inventory their assets, detect threats, manage vulnerabilities, and conduct threat hunting. 

The Community Defense Program also offers enrollment into the Neighborhood Keeper collective defense and community-wide visibility solution, as well as Dragos’ OT-CERT, which provides free ICS/OT cybersecurity resources. 

Utilities are also being offered access to training materials, including general training and classes, and instructions for using its platform.

“Governments and large infrastructure providers are heavily investing in industrial cybersecurity, but small utilities that deliver critical services to the majority of people haven’t been able to do the same,” said Dragos CEO Robert Lee. 

“Their resource constraints are uniquely challenging because their budgets are not only smaller, but often they face other restrictions, such as regulation by public utility commissions which assess expenses and determine allowability of cost recovery for investments such as cybersecurity costs. They often don’t have the resources to buy foundational tools, like the Dragos Platform, to help defend their infrastructure,” Lee added.

Dragos announced the expansion of its program just days after the US government announced that multiple water facilities in the country were targeted in recent weeks by hackers affiliated with the Iranian government. 

Advertisement. Scroll to continue reading.

Related: CISA Warns of Unitronics PLC Exploitation Following Water Utility Hack

Related: Congressmen Ask DOJ to Investigate Water Utility Hack, Warning It Could Happen Anywhere

Related: EPA Mandates States Report on Cyber Threats to Water Systems

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Gain valuable insights from industry professionals who will help guide you through the intricacies of industrial cybersecurity.


Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.


Expert Insights

Related Content


The overall effect of current global geopolitical conditions is that nation states have a greater incentive to target the ICS/OT of critical industries, while...

CISO Strategy

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...


Otorio has released a free tool that organizations can use to detect and address issues related to DCOM authentication.


Wago has patched critical vulnerabilities that can allow hackers to take complete control of its programmable logic controllers (PLCs).


Energy giants Schneider Electric and Siemens Energy confirm being targeted by the Cl0p ransomware group in the campaign exploiting a MOVEit zero-day.


Mandiant's Chief analyst urges critical infrastructure defenders to work on finding and removing traces of Volt Typhoon, a Chinese government-backed hacking team caught in...


Municipal Water Authority of Aliquippa in Pennsylvania confirms that hackers took control of a booster station, but says no risk to drinking water or...