OT ThreatFeed

Detect Threats and Identify Vulnerabilities with In-Depth Threat Context 

Stay up-to-date with the latest threats and vulnerabilities

Quickly identify new risks to your industrial systems

Rapidly respond with actionable insights

OT ThreatFeed™ keeps you up-to-date with the latest threats by delivering contextual threat information that is fully integrated into SCADAguardian and SCADAguardian Advanced.

This threat information enriches SCADAguardian’s anomaly detection capabilities by providing additional context to help you better identify risks and detect threats in your environment.

With these capabilities built-in to the product, you can get full threat analysis and vulnerability assessment of your environment – without the cost and complexity of managing multiple tools.

Once a threat has been identified, it is correlated with other incidents in your environment to provide you with full visibility of your security posture. Additionally, SCADAguardian Smart Incident provides operational context and packet captures that can be reviewed as part of your incident response process. SCADAguardian Time Machine gives you access to system snapshots to help you identify what changes have been made since the attack began.

Updates to the OT ThreatFeed can be provided manually to individual appliances or can be automated across your entire deployment through the Central Management Console.

Reduce Your Time to Detection

  • Identify which of your assets are at-risk of attack with vulnerability assessment signatures
  • Detect anomalous and suspicious behavior on your network by combining the power of SCADAguardian’s machine learning and the additional threat context provided by the OT ThreatFeed
  • Reduce your time to detection and respond faster to threats in your environment with full network visibility and contextual threat information 

    Click to enlarge.

    Stay Up-to-Date with the Latest Threats

    The OT ThreatFeed gives you context on known and emerging threats and vulnerabilities by delivering contextual threat information, including:

    • IDS signatures 

    • Yara rules 
    • Vulnerability assessment signatures 
    • STIX indicators 
    • Additional indicators of compromise and zero-days discovered by Nozomi Networks

    Integrated with Nozomi Networks Products

    Flexible Update Options

    • Updates can be automated across your entire SCADAguardian and SCADAguardian Advanced deployments through the Central Management Console (CMC)
    • If manual updates are required, new threat information can be accessed by downloading the latest information from the Nozomi Networks Customer Portal

    How it Works

    Click to enlarge

    Nozomi Networks Solution Architecture

    * A completely passive product, SCADAguardian is also available. It does not include Smart Polling.

    The award winning Nozomi Networks solution improves cyber resiliency and reliability via a modular, extensible and scalable architecture.

    Sample Deployment Architecture

    This is a general example of how the Nozomi Networks solution can be deployed. A wide variety of appliances, a flexible architecture, and integrations with other systems allow us to provide a solution tailored to meet the needs of your organization.

    Click to enlarge

     Helpful Resources


    OT ThreatFeed




    SCADAguardian Advanced


    Central Management Console


    Nozomi Networks Labs


    Want to Know More?