Two major ICS/OT security firms made product announcements on Wednesday: Dragos unveiled the latest release of its platform, and Nozomi Networks announced a threat intelligence enhancement in collaboration with Mandiant.
Dragos said the latest version of its platform is designed to streamline threat and vulnerability workflows, as well as provide deeper and enriched visibility into OT assets.
The industrial cybersecurity firm is enhancing asset inventory capabilities with a new file ingestion feature for enriching asset data from existing project files and other devices. It has also added a lightweight collector that operates on edge devices to provide data collection capabilities for space-constrained locations, ensuring efficient monitoring for even the most remote assets.
In terms of vulnerability management and asset operationalization, the company has added customizable filters that allow users to efficiently manage and analyze asset data, automated alerts for vulnerabilities that are relevant to the customer’s environment, and additional intelligence context for vulnerabilities.
“The latest enhancements to the Dragos Platform focus on helping industrial organizations build the most comprehensive asset inventory and implement effective protective measures against today’s intensified OT cyber threats—all without disrupting critical operations,” said Jodi Schatz, chief product officer at Dragos.
Nozomi Networks announced that it has teamed up with Google Cloud’s Mandiant for a threat intelligence expansion pack. The TI Expansion Pack enables customers to enrich Nozomi threat intelligence with Mandiant threat intelligence for comprehensive access to real-time information on IT, OT and IoT threats.
Nozomi also announced Vantage Threat Cards, a new presentation capability in the Vantage cloud-based management console. The cards logically cluster and organize threat data, providing quick access to threat descriptions, dates when the threat was first and last seen, exploitation vectors and status, targeted industries and locations, MITRE ATT&CK details, and mitigation recommendations.
“This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure,” said Melissa Smith, Google Cloud’s Head of Strategy & Technology Partnerships.
“By blending Mandiant’s threat intelligence and expertise with Nozomi Networks’ OT threat intelligence and tools, we can enable critical infrastructure organizations to enhance their threat intelligence and investigations for a stronger defense,” Smith added.
Learn More at SecurityWeek’s ICS Cybersecurity Conference
The leading global conference series for Operations, Control Systems and OT/IT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.
October 21-24, 2024 | Atlanta
www.icscybersecurityconference.com
Related: Over 40,000 Internet-Exposed ICS Devices Found in US: Censys
Related: Ransomware Attacks on Industrial Firms Surged in Q2 2024