SCADAfence Blog

Earlier this month, on June 4th, the North American Electric Reliability Corporation (NERC) released a new practice guide that pinpoints how organizations should integrate network monitoring...

It’s no secret that Nation-State attackers are targeting US government agencies and organizations. As seen in the Solarwinds breach and the more recent Colonial Pipeline ransomware attack,...

It's been over a decade since the headline-grabbing Stuxnet virus was introduced and the concept of nation-state-sanctioned cyber attacks was presented by security professionals. The concern about...

Following the Colonial Pipeline Ransomware incident, Twitter exploded in to an orgy of blather from people demanding that we “air-gap” ICS. Those righteous keyboard warriors know what is best, I’m...

There are new vulnerabilities discovered every day, and new patches issued to fix them. As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources...

On May 8th, news broke that Colonial Pipeline, one of the largest fuel pipelines in the US, was forced to stop all operations due to falling victim to a ransomware attack. The attack on Colonial...

As each day passes, so does the increasing amount of security risks with the cybersecurity attack vector. Every organization can easily fall victim to another cyber threat, but recently, the...

Over the last few days, cybersecurity journalists and the ICS security community have been discussing the Oldsmar Florida water system cyber attack, almost ad nauseam. While many people have been...

This Week, Ransomware Slams Westrock & Other Industrial Organizations Earlier this week, the operations at $17 billion packaging firm WestRock were disrupted by a ransomware attack that impacted...

Our Researchers Discover Another Vulnerability  As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of...

What a year. What a year this has been to humanity, an epidemic has fundamentally changed the way we interact with one another, social distancing, lockdowns and restrictions in virtually...

SunBurst - The Cyber Attack on SolarWinds SunBurst is a cyber espionage campaign that leveraged a supply chain attack on SolarWinds, a leading supplier of network management software. Between...

The '85 Bears of Cyber Physical Security A few days ago, our elite cybersecurity team of defenders, faced over 50 of the world’s top hackers and security practitioners in the Hack the Building...

In today's stressful times, we can all use a refreshing beverage. Seriously, with the uncertainty around the the rising ransomware incidents in OT networks, we can all use some brightness in...

SCADAfence Researchers Discover A Sensitive Information Leak Vulnerability in Canon Printers

Our Researchers Discover Another Vulnerability  As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of...

Hey, I’m SCADAGirl. I'm a cybersecurity superhero that ensures that OT & IoT networks are safe. Here is my commentary on the latest headlines in OT & IoT security.

As industrial systems become increasingly connected to IT, Cloud and ERP systems, they become increasingly exposed to cyber threats such as ransomware. In fact, cyber threats for industrial...

It’s true, the SCADAfence Governance Portal can now connect to any third-party application through Syslog or rest-API and we’re providing the entire on-boarding for free until the end of this...

A Shocking Flaw Here’s an all too often overlooked item in the security architecture of industrial networks. Below is a diagram of an industrial network architecture we’ve seen in a number of...

Hey, I’m SCADAGirl. I'm a cybersecurity superhero that ensures that OT & IoT networks are safe. Here is my commentary on the latest headlines in OT & IoT security.

Overview As the NSA urges companies to secure their industrial networks, two vulnerabilities were found in Schneider Electric Triconex SIS devices. Both of the vulnerabilities reside within the ...

SigRed Overview SigRed is a vulnerability that was exposed yesterday (July 14th 2020) by the security firm Check Point. Successful exploitation of the vulnerability could lead to a malicious actor...

As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack techniques. Ripple20 are 19...

As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack techniques. CVE-2020-13238 is a...

Iran Launches Cyber Attacks on Israeli Water Facilities According to a Fox News report, Iranian cyber attackers used American servers to launch their attacks on the Israeli water infrastructure...

A New Vulnerability is Detected As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack...

The IoT Attack Landscape In a recent blog post, I wrote about the fertile ground of insecure IoT devices, and their use by adversaries such as cybercriminals and defense organizations such as...

Business continuity planning (BCP) is the process involved in the creation of a system that prevents potential threats to a company, and also aids in its recovery.

The Russian Government Hacking IoT Devices… Again A recent Forbes article reports that the Russian Federal Security Service (FSB), is using an external contractor to develop exploits and attack...

The Implications Of Coronavirus The implications of the Coronavirus strain (COVID-19), which emerged in Wuhan, China, have a significant and detrimental effect on the global economy and our...

What Does It Mean For Critical Infrastructure, Manufacturing & Building Management Systems? Co-written by Ofer Shaked and Maayan Fishelov

Until now, the use of malware specifically designed to attack industrial control systems has been confined to fairly rare high-level nation-state attacks such as those which targeted nuclear...

Co-written by Ofer Shaked and Maayan Fishelov Background Odveta is a ransomware that has been observed in multiple industrial networks. It doesn’t have an automated propagation mechanism, and it...

2019 OT Security Summary & 2020 Predictions As the ritual dictates with every end of a year, we try to look back on the past year’s achievements as well as try to foresee what the future holds, or...

SCADAfence and CyberArk have together developed a proven method for protecting utilities and manufacturing facilities from external attackers by blocking malicious access to critical OT production...

An Intro to Building Management Systems (BMS) Before we dive into it, a Building Management System (BMS), a.k.a. “Smart Building Technology,” is an intelligent microprocessor-based controller...

New Orleans & UK Government Slammed by Cyberattacks

Prevent Incidents rather than Handling Them

Smart Operational Networks Come at a Security Price