With vendors leveraging increasingly advanced obfuscation and encryption techniques to protect the confidentiality of their code, finding vulnerabilities can be especially challenging. Another difficulty is the firmware itself becoming a challenge to reverse, if it was compiled for an obsolete architecture and commercial disassemblers can’t properly reconstruct it. The firmware in the Schneider Electric APC PDU is an example of such a code; it has been around for years and is compiled for an old and obsolete version of the Intel 80286, which prevents easy reading or inspection.
A recently released study by the Ponemon Institute finds that 61% of oil and gas operators in the U.S. indicate that their organization’s ICS protection and security is inadequate. While the implementation of digitally connected industrial components is delivering business benefits, it has significantly increased cyber risk. Yet only 41% of companies continually monitor OT infrastructure to prioritize cyber threats and attacks.
At the recent ARC Forum in Orlando, the automation community met to discuss pressing issues for the future. Cyber security was on top of the list of topics, with a full track led by ARC’s lead industrial security analyst Sid Snitkin. He led a panel that addressed an important new tool: ICS anomaly and breach detection solutions. Let’s look at the four critical capabilities ARC identified for these products, and how Nozomi Networks’ technology addresses them.
Date: Nov 16, 2016 By: Heather MacKenzie
There is positive momentum in the field of industrial cyber security and an exciting aspect of it is the energy that a new generation of ICS security expert / entrepreneur is bringing to the field. An example is Andrea Carcano, the co-founder and Chief Product Officer of Nozomi Networks. Find out how the technology he pioneered is making a difference in ICS security and reliability.