Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Rockwell Automation is working on patches for two vulnerabilities affecting its Allen-Bradley PowerMonitor 1000 power monitors. Details of the flaws and proof-of-concept (PoC) code are publicly available. [Read More]
Roughly one-third of the ICS-specific vulnerability advisories published in 2018 contained basic factual errors, including when describing and rating the severity of a flaw, according to Dragos. [Read More]
There are over 7,400 instances of a refrigeration system exposed on the Internet due to the failure of owners to change the default password and implement other security measures. [Read More]
A survey of over 650 people from organizations of all sizes in various sectors reveals the security, safety and privacy challenges and concerns related to IT/OT/IIoT convergence. [Read More]
An industrial gateway made by Germany-based Kunbus is affected by serious vulnerabilities that can be exploited to gain complete control of a device. [Read More]
Claroty along with veteran security and operational practitioners who have faced these challenges first-hand will discuss foundational people, process and technology decisions and explore various approaches to addressing these issues. [Read More]
A US energy company, identified by some as Duke Energy, received a $10 million fine from the North American Electric Reliability Corporation (NERC) for nearly 130 violations of Critical Infrastructure Protection standards. [Read More]
The Industrial Internet Consortium (IIC) and the OpenFog Consortium this week announced they finalized the details to merge into a single entity. [Read More]
The US intelligence community’s latest worldwide threat assessment warns that Russia and China are capable of disrupting critical infrastructure and Iran is not far behind. [Read More]
The official Call for Presenations (CFP) for SecurityWeek’s 2019 Singapore Industrial Control Systems (ICS) Cyber Security Conference, being held April 16–18 at the Fairmont Singapore & Swissôtel The Stamford closes January 31. [Read More]
FEATURES, INSIGHTS // SCADA / ICS
It pays to be ahead of regulators, because if you’re aiming to be truly secure then you’ll already be meeting many of the key requirements of any local law.
The most successful organizations will be the ones that look at cyber risk holistically and build bridges between the IT, OT, and Security organizations.
Concerns about endpoint security in industrial environments, especially among OT personnel, are being driven by the demise of the traditional air gapping of OT infrastructures.
Wireless IIoT solutions are fast to deploy, but companies must gauge whether they are an appropriate solution based on a number of different factors.
Building owners, suppliers and managers need to act to ensure the security of buildings and the private data they hold, and the safety of those within them.
Proper network segmentation is one of the most impactful actions industrial asset owners can take to reduce the risk of a major security incident.
For industrial organizations, establishing an infrastructure that provides visibility, security, control, and is purpose-built for operational technologies (OT), is the clearest path to compliance.
In assessing industrial cyber risk and prioritizing your remediation steps, it can be difficult to even determine where to begin.
Industrial IoT in the enterprise expands the threat landscape by opening up new vulnerabilities that can be exploited across endpoints, applications, cloud infrastructure and networks.
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the physical and cyber security threats facing the increasingly smart car.
SecurityWeek Daily Briefing
- Are We Beyond Peak Buzzword?
- New Settings Help Hackers Test Facebook Mobile Apps
- LockerGoga Ransomware Neutralized by Shortcut Files
- Microsoft Finds Privilege Escalation, Code Execution Flaws in Huawei Tool
- Researchers Uncover Vulnerabilities in LTE Wireless Protocol
- Supply-Chain Attack Used to Install Backdoors on ASUS Computers
- Major U.S. Chemical Firms Hit by Cyberattack
- DHS Warns of Vulnerabilities in Medtronic Defibrillators
- Industrial Cybersecurity Firm CyberX Raises $18 Million
- Second Critical Crypto Flaw Found in Swiss E-Voting System
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy