This Thanksgiving, Be Thankful for OT Security | SCADAfence
    November 23, 2022

    This Thanksgiving, Be Thankful for OT Security | SCADAfence

    Thanksgiving – when families get together and express gratitude for everything they have, accompanied by good food and hopefully great football. For most families and network security teams who just...

    Four reasons for CISOs to maintain (or increase!) their OT security budget during a recession
    November 17, 2022

    Four reasons for CISOs to maintain (or increase!) their OT security budget during a recession

    Psst….Don’t look now, but the global economy might be entering a recession. Yeah, yeah, you already know that. Everyday you’re reading about tech industry layoffs, stock market dips, and general...

    Did Russia Attack Europe’s Largest Copper Producer?
    November 16, 2022

    Did Russia Attack Europe’s Largest Copper Producer?

    Three days before Halloween, on Oct 28, 2022 Aurubis, the largest copper producer in Europe, issued a press release announcing that it had been hit by a cyber attack. The company announced that it...

    The Rise of Post-Exploitation Attack Frameworks
    November 10, 2022

    The Rise of Post-Exploitation Attack Frameworks

    The Cyber Kill Chain is a framework that outlines the stages of common cyberattacks and the points in the process at which attacks can be detected or intercepted. Developed by Lockheed Martin, this...

    OpenSSL Vulnerability - What It Means For Your OT Network
    November 2, 2022

    OpenSSL Vulnerability - What It Means For Your OT Network

    The cyber security community was deeply engrossed this week in the news that OpenSSL, the organization responsible for the software package that encrypts and secures communications across much of the...

    Gartner’s Advice For Choosing The Right OT Protection For Your Network
    October 25, 2022

    Gartner’s Advice For Choosing The Right OT Protection For Your Network

      If you are the person in your organization responsible for securing an OT network, you are probably feeling very popular these days. Your inbox is no doubt full of emails inviting you to ‘hop on a...

    New Insights into GhostSec Attacks on Iran’s Infrastructure
    October 19, 2022

    New Insights into GhostSec Attacks on Iran’s Infrastructure

      Multiple factions of the hacker group known as “Anonymous” have banded together to carry out coordinated cyber attacks targeting Iran as retaliation for the deaths of multiple young women in Iran...

    5 Best Practices for Operational Technology (OT) Security
    October 11, 2022

    5 Best Practices for Operational Technology (OT) Security

    Why Do You Need Operational Network Security? Modern operational technology (OT) networks are evolving due to developments such as the rise Industrial Internet of Things (IIoT), Industry 4.0, smart...

    NSA and CISA Issue Joint Advisory for OT/ICS Networks
    October 3, 2022

    NSA and CISA Issue Joint Advisory for OT/ICS Networks

    The US National Security Agency (NSA) and the Cybersecurity Infrastructure Security Agency (CISA) have issued a joint advisory specifically for OT/ICS networks. The advisory offers guidance on ways...

    Introducing SCADAfence's “Tailored Threat Intelligence”
    September 20, 2022

    Introducing SCADAfence's “Tailored Threat Intelligence”

    A SCADAfence New Feature report “Could we be next?”   One of the biggest challenges for an industrial OT/ICS security professional is figuring out if their organization is vulnerable to the latest...

    SCADAfence Discovers First CVEs Detected In Alerton PLCs
    September 6, 2022

    SCADAfence Discovers First CVEs Detected In Alerton PLCs

    Alerton, a subsidiary of Honeywell, is a major manufacturer of building management systems for heating, ventilation, and air conditioning (HVAC). SCADAfence’s research team discovered vulnerabilities...

    LockBit Ransomware Targets OT
    September 1, 2022

    LockBit Ransomware Targets OT

    What do Organizations Need to Know about LockBit? The first known ransomware attacks using what would come to be known as LockBit were reported back in 2019. Organizations that were infected with the...

    Presenting The SCADAfence Cloud for OT Networks
    August 29, 2022

    Presenting The SCADAfence Cloud for OT Networks

    SCADAfence now offers new advanced services via our cloud. We use the cloud to deliver continuous OT security updates, software upgrades and OT health monitoring.

    Understanding The South Staffordshire Water Cyber Attack
    August 23, 2022

    Understanding The South Staffordshire Water Cyber Attack

    South Staffordshire PLC, parent company of South Staffs Water, a small independent utility that supplies water to 1.6 million customers, including 35,000 businesses, in central England was hit by a...

    Evaluating Risk Across Your Entire OT Architecture
    August 18, 2022

    Evaluating Risk Across Your Entire OT Architecture

    A SCADAfence New Feature Report Here is the standard, old school way of automated risk assessment across an OT network:  First, scan each device individually. Then evaluate its specific level of risk...

    ICS / OT Security News Update | SCADAfence - August 17
    August 17, 2022

    ICS / OT Security News Update | SCADAfence - August 17

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks including BlackCat & Luna, and IoT security news. They also offer analysis of the potential impacts...

    SCADAfence Contributes New Metasploit Module For Pentesting BACnet
    August 15, 2022

    SCADAfence Contributes New Metasploit Module For Pentesting BACnet

    The SCADAfence engineering team has contributed a new module to the widely used Metasploit framework as a “pay it forward” program that will allow pentesters and asset owners to use a new set of...

    CVE Prioritization Boosts OT Security & Saves Your Organization Money
    August 2, 2022

    CVE Prioritization Boosts OT Security & Saves Your Organization Money

    A SCADAfence New Feature reportA large, robust Industrial Control Systems (ICS) network can contain tens of thousands of devices. Each of those devices may have any number of associated known CVEs...

    Did Iranian Hackers Cause The Fire At An Israeli Power Plant?
    July 18, 2022

    Did Iranian Hackers Cause The Fire At An Israeli Power Plant?

    Iranian Hackers Claimed Responsibility for the Power Plant Fire Almost immediately after a fire broke out in an active power plant in southern Israel on July 14, 2022, an Iranian hacking group...

    ICS / OT Security News Update | SCADAfence - July 15
    July 15, 2022

    ICS / OT Security News Update | SCADAfence - July 15

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks and IoT security news. They also offer analysis of the potential impacts and their expert...

    The Iran Steel Industry Cyber Attack Explained
    July 7, 2022

    The Iran Steel Industry Cyber Attack Explained

    Iran’s steel Industry was hit by a hacktivist group calling themselves ”Goneshke Darande” [Predatory Sparrow] on June 27th, 2022. The attack focused specifically on three steel companies that are...

    What Really Caused The Freeport LNG Plant Explosion?
    June 30, 2022

    What Really Caused The Freeport LNG Plant Explosion?

    This blog is a response to a recently published article that implied a link between the June 8th explosion at the Freeport LNG plant and Russian threat actors. The author attempted to connect...

    ICS / OT Security News Update | SCADAfence - June 22
    June 20, 2022

    ICS / OT Security News Update | SCADAfence - June 22

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks and IoT security news. They also offer analysis of the potential impacts and their expert...

    Why Wind Farms’ OT Networks Could Be Ransomware’s Next Big Target
    May 26, 2022

    Why Wind Farms’ OT Networks Could Be Ransomware’s Next Big Target

    A Change In The Air The past several decades have seen a seismic shift in how the world thinks about energy. Concerns about climate change and global geopolitics have caused many nations to declare a...

    Interview With SCADAfence's New Field CTO, Paul Smith
    May 16, 2022

    Interview With SCADAfence's New Field CTO, Paul Smith

    OT and ICS Industry veteran Paul Smith, author of “Pentesting Industrial Control Systems” has recently joined the SCADAfence team in the role of Field CTO. We interviewed Paul to get his thoughts on...

    Weekly ICS / OT Security News Digest | SCADAfence - May 10
    May 11, 2022

    Weekly ICS / OT Security News Digest | SCADAfence - May 10

    Our research team has put together all of the most relevant news topics in the Ransomware and IoT security fields, as well as their impacts and their expert recommendations:

    CISA's Top 15 Routinely Exploited Vulnerabilities: SCADAfence Customers Stay Protected
    May 9, 2022

    CISA's Top 15 Routinely Exploited Vulnerabilities: SCADAfence Customers Stay Protected

    On April 27, the Cybersecurity and Infrastructure Security Agency (CISA), published a joint advisory in collaboration with CSA/NSA/FBI/ACSC and other cybersecurity authorities, providing details on...

    INCONTROLLER / Pipedream: State-Sponsored Attack Tools Targeting Multiple ICS Systems
    April 14, 2022

    INCONTROLLER / Pipedream: State-Sponsored Attack Tools Targeting Multiple ICS Systems

    Dangerous New Malware Can Shut Down, Sabotage Industrial Sites  

    Industroyer2 Malware Attack: Vigilance needed on ICS Networks | SCADAfence
    April 14, 2022

    Industroyer2 Malware Attack: Vigilance needed on ICS Networks | SCADAfence

    Russian-backed Group Attempts to Compromise Ukrainian Power Grid Using Industroyer2 Malware As part of their ongoing military assault against neighboring Ukraine, Russian-backed hacker group Sandworm...

    Vulnerability Report: Rockwell PLC Unauthorized Code Injection [CVE-2022-1161, CVE-2022-1159]
    April 6, 2022

    Vulnerability Report: Rockwell PLC Unauthorized Code Injection [CVE-2022-1161, CVE-2022-1159]

    Two vulnerabilities in Rockwell programmable logic controllers and engineering workstation software have been disclosed. These vulnerabilities give attackers a way to modify automation processes and...

    Your Weekly ICS / OT Security News Digest - March 31st
    March 31, 2022

    Your Weekly ICS / OT Security News Digest - March 31st

    Our research team has put together all of the most relevant news topics in the ICS, IT, Ransomware & OT security fields, as well as their impacts and their expert recommendations:

    The Weekly ICS and OT Security News Digest - March 10th 2022 | SCADAfence
    March 10, 2022

    The Weekly ICS and OT Security News Digest - March 10th 2022 | SCADAfence

     

    The Russia-Ukraine Conflict from an Industrial Cybersecurity Perspective
    March 8, 2022

    The Russia-Ukraine Conflict from an Industrial Cybersecurity Perspective

    In recent weeks, Ukraine has been hit with numerous cyberattacks targeting its government and banking sector as a part of the Russo-Ukrainian crisis. Several Ukrainian government departments and...

    OT Security in 2021 - The Roundup | SCADAfence
    December 30, 2021

    OT Security in 2021 - The Roundup | SCADAfence

    As 2021 draws to a close, it is time for our customary round-up of the year’s industry-changing cyber attacks, product and company updates, and SCADAfence’s achievements. 

    OT Security for Log4J with the SCADAfence Platform
    December 22, 2021

    OT Security for Log4J with the SCADAfence Platform

    Until two weeks ago, Log4j was just a popular Java logging framework, one of the numerous components that run in the background of many modern web applications. But since a zero-day vulnerability...

    A SCADAfence Update Regarding The Log4Shell Vulnerability
    December 15, 2021

    A SCADAfence Update Regarding The Log4Shell Vulnerability

    December 10, 2021, will always be remembered by the security community as the day when a highly critical zero‑day vulnerability was found in the very popular logging library for Java applications, ...

    Simplifying Cyber Security for the Mining Industry
    December 13, 2021

    Simplifying Cyber Security for the Mining Industry

    The COVID-19 pandemic has been detrimental to the world economy while flattening many industries. The mining industry was fortunate to be one of the very few industries to deliver exceptional growth...

    To Patch or Not to Patch in OT | SCADAfence
    November 9, 2021

    To Patch or Not to Patch in OT | SCADAfence

    When organizations are seeking out the right OT network security for their OT environments and OT devices, the clear objective is to decrease and eliminate risks. Too often organizations only adopt...

    Implementing Zero Trust Security in OT Environments
    October 26, 2021

    Implementing Zero Trust Security in OT Environments

    In 2021, the increasing number of cyber security attacks on major critical infrastructure operators grabbed the headlines. The successful attacks targeted different industrial sectors such as oil...

    Integrate IBM QRadar SIEM with SCADAfence For Complete OT Visibility
    October 6, 2021

    Integrate IBM QRadar SIEM with SCADAfence For Complete OT Visibility

    CISOs and security teams face an uphill battle when it comes to detecting and mitigating ever more frequent and sophisticated cyber threats, especially in OT environments.