Industrial Cyber Security Blog
Pharmaceutical companies are rapidly embracing digital transformation and innovative technologies to gain operational efficiencies. However, both automation and outsourcing increase cyber risk.
Where do the biggest security gaps lie? In the expanding threat surface created by increased connectivity between pharma’s IT, IoT, OT and cyber-physical systems.
Without visibility into your operational assets, you can’t answer three fundamental questions: what’s on your network, how are devices communicating, and is there anything connected to the internet that shouldn’t be?
To encourage more organizations to include OT and IoT assets in their security monitoring programs, we’ve released Guardian Community Edition (Guardian CE) – a free tool that provides visibility into these critical assets.
Three powerful developments are reshaping the world’s continuous OT monitoring requirements: the rapid convergence of IT/OT security, broader use of corporate SOCs and external security providers, and accelerating digital transformation.
Join ARC Advisory Group Vice President Sid Snitkin as he explores the impact each trend is having on core cyber security needs.
Recent Labs Posts
A well-known RTOS (Real-Time Operating System), widely used in industrial sectors, is at risk from a series of 11 vulnerabilities dubbed URGENT/11.
Nozomi Networks Labs conducted research on the vulnerable devices and has released threat signatures for URGENT/11 that identify threats in typical industrial networks without generating high numbers of false positive alerts.
On August 13, 2019, the Siemens CERT Team issued an advisory (SSA-100232) concerning Siemens SCALANCE switch devices. This vulnerability was responsibly disclosed to Siemens CERT Team and CISA by Nozomi Networks Labs.
Learn more about our findings and gain a better understanding of the cyber risks of legacy devices.
Today at Black Hat USA we’re presenting an innovative power grid cyber security solution that greatly improves monitoring of intelligent electronic devices (IEDs).
Using the IEC 62351 standard for monitoring industrial networks, we demonstrate how four types of hard-to-detect attacks are readily identified.