BLOG
Industrial Cyber Security Blog
Recent Posts
Snake Ransomware is Raising Concerns for Industrial Controls Systems
A recently discovered file-encrypting ransomware is raising concerns for industrial control system (ICS) operators.
Read on to learn what we now know about the Snake ransomware, and our recommendations for protecting your ICS systems.
Industrial Cybersecurity Needs Broad & Deep OT/IoT Threat Visibility
Security teams can’t completely defend systems against sophisticated cyberattacks, but visibility into these threats helps minimize security risks.
Frost Radar Declares Nozomi Networks Cybersecurity Leader
The building automation and facility sector is rapidly adopting IoT-based systems with the goal of significantly reducing operational costs. This digital transformation is connecting legacy systems to new devices and sensors, expanding the attack surface for cyber threats.
Let’s look at both the promise of smart buildings and the realities of managing their cybersecurity risks.
Recent Labs Posts
URGENT/11 – New ICS Threat Signatures by Nozomi Networks Labs
A well-known RTOS (Real-Time Operating System), widely used in industrial sectors, is at risk from a series of 11 vulnerabilities dubbed URGENT/11.
Nozomi Networks Labs conducted research on the vulnerable devices and has released threat signatures for URGENT/11 that identify threats in typical industrial networks without generating high numbers of false positive alerts.
New Switch Vulnerability Discovered by Nozomi Networks Labs
On August 13, 2019, the Siemens CERT Team issued an advisory (SSA-100232) concerning Siemens SCALANCE switch devices. This vulnerability was responsibly disclosed to Siemens CERT Team and CISA by Nozomi Networks Labs.
Learn more about our findings and gain a better understanding of the cyber risks of legacy devices.
Black Hat: The Future of Securing Power Grid Intelligent Devices
Today at Black Hat USA we’re presenting an innovative power grid cyber security solution that greatly improves monitoring of intelligent electronic devices (IEDs).
Using the IEC 62351 standard for monitoring industrial networks, we demonstrate how four types of hard-to-detect attacks are readily identified.