Takeaways From The Oldsmar Water Attack & What Security Leaders Can Do About It
Over the last few days, cybersecurity journalists and the ICS security community have been discussing the Oldsmar Florida water system cyber attack, almost ad nauseam. While many people have been...
Preventing Ransomware Attacks On Industrial Networks
This Week, Ransomware Slams Westrock & Other Industrial Organizations Earlier this week, the operations at $17 billion packaging firm WestRock were disrupted by a ransomware attack that impacted...
SCADAfence Researchers Discover a DoS Vulnerability in all of ABB's AC500 V2 products
Our Researchers Discover Another Vulnerability As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of...
Thank You 2020 - It's Been Quite A Ride!
What a year. What a year this has been to humanity, an epidemic has fundamentally changed the way we interact with one another, social distancing, lockdowns and restrictions in virtually...
SolarWinds / SunBurst - Should Enterprises Adopt Supply Chain Certification?
SunBurst - The Cyber Attack on SolarWinds SunBurst is a cyber espionage campaign that leveraged a supply chain attack on SolarWinds, a leading supplier of network management software. Between...
How SCADAfence Defended a DoD Supplier from Over 50 Cyber-Attackers
The '85 Bears of Cyber Physical Security A few days ago, our elite cybersecurity team of defenders, faced over 50 of the world’s top hackers and security practitioners in the Hack the Building...
![[Cocktail Book] Raise Your Drinks & Your OT / IoT Security Posture](https://f.hubspotusercontent00.net/hub/6931155/hubfs/Nov%2012%20Cocktail-2.jpg?width=450&name=Nov%2012%20Cocktail-2.jpg)
[Cocktail Book] Raise Your Drinks & Your OT / IoT Security Posture
In today's stressful times, we can all use a refreshing beverage. Seriously, with the uncertainty around the the rising ransomware incidents in OT networks, we can all use some brightness in...
Vulnerability Report CVE-2020-16849
SCADAfence Researchers Discover A Sensitive Information Leak Vulnerability in Canon Printers
CVSS 8.6 DoS Vulnerability in Mitsubishi Electric MELSEC iQ-R Series CPU
Our Researchers Discover Another Vulnerability As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of...
The OT & IoT Cybersecurity Feed - October 2020
Hey, I’m SCADAGirl. I'm a cybersecurity superhero that ensures that OT & IoT networks are safe. Here is my commentary on the latest headlines in OT & IoT security.
Managing Your Unmanageable OT and IT Infrastructure
As industrial systems become increasingly connected to IT, Cloud and ERP systems, they become increasingly exposed to cyber threats such as ransomware. In fact, cyber threats for industrial...
SCADAfence Governance - Now Open To Any Third-Party Application & Free Onboarding Until 2021!
It’s true, the SCADAfence Governance Portal can now connect to any third-party application through Syslog or rest-API and we’re providing the entire on-boarding for free until the end of this...
Siemens S7 PROFINET - A Shocking Network Architecture Flaw
A Shocking Flaw Here’s an all too often overlooked item in the security architecture of industrial networks. Below is a diagram of an industrial network architecture we’ve seen in a number of...
The OT & IoT Cybersecurity Feed
Hey, I’m SCADAGirl. I'm a cybersecurity superhero that ensures that OT & IoT networks are safe. Here is my commentary on the latest headlines in OT & IoT security.
Similarities Between Stuxnet And Latest Vulnerabilities Found In Schneider Triconex SIS Controllers
Overview As the NSA urges companies to secure their industrial networks, two vulnerabilities were found in Schneider Electric Triconex SIS devices. Both of the vulnerabilities reside within the ...
SigRed: A Wormable Microsoft DNS Server RCE Vulnerability
SigRed Overview SigRed is a vulnerability that was exposed yesterday (July 14th 2020) by the security firm Check Point. Successful exploitation of the vulnerability could lead to a malicious actor...
Ripple20: Mixed Results in SCADAfence's Exploitability Lab Tests
As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack techniques. Ripple20 are 19...
SCADAfence Researchers Discover a Vulnerability in Mitsubishi Electric MELSEC iQ-R Series CPU DoS
As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack techniques. CVE-2020-13238 is a...
Iranian Hackers Target Israel’s Water Supply & How to Prevent Similar Attacks
Iran Launches Cyber Attacks on Israeli Water Facilities According to a Fox News report, Iranian cyber attackers used American servers to launch their attacks on the Israeli water infrastructure...
![[Technical Blog] CVE-2020-12117 & Industrial IoT Insecure Default Configurations](https://cdn2.hubspot.net/hub/6931155/hubfs/%5BTechnical%20Blog%5D%20CVE-2020-12117%20%26%20Industrial%20IoT%20Insecure%20Default%20Configurations.jpg?width=450&name=%5BTechnical%20Blog%5D%20CVE-2020-12117%20&%20Industrial%20IoT%20Insecure%20Default%20Configurations.jpg)
[Technical Blog] CVE-2020-12117 & Industrial IoT Insecure Default Configurations
A New Vulnerability is Detected As part of our mission to secure the world’s OT, IoT and Cyber Physical infrastructures, we invest resources into offensive research of vulnerabilities and attack...
The “dark_nexus” Botnet Reveals That Adversaries Compete To Control Your IoT Devices
The IoT Attack Landscape In a recent blog post, I wrote about the fertile ground of insecure IoT devices, and their use by adversaries such as cybercriminals and defense organizations such as...
Business Continuity for Manufacturing: Maintaining Production During a Disaster
Business continuity planning (BCP) is the process involved in the creation of a system that prevents potential threats to a company, and also aids in its recovery.
Russia’s FSB Develops Hacking Tools For IoT Devices – NVRs And IP Cameras
The Russian Government Hacking IoT Devices… Again A recent Forbes article reports that the Russian Federal Security Service (FSB), is using an external contractor to develop exploits and attack...
COVID-19 Outbreak - We’re Here To Help!
The Implications Of Coronavirus The implications of the Coronavirus strain (COVID-19), which emerged in Wuhan, China, have a significant and detrimental effect on the global economy and our...
CVE-2020-0796: The Next WannaCry Is Here & There’s No Patch Available Yet
What Does It Mean For Critical Infrastructure, Manufacturing & Building Management Systems? Co-written by Ofer Shaked and Maayan Fishelov
SNAKE / EKANS Ransomware: Nation-State Attackers Deploy OT-Oriented Malware
Until now, the use of malware specifically designed to attack industrial control systems has been confined to fairly rare high-level nation-state attacks such as those which targeted nuclear...
![[TECHNICAL BLOG] ODVETA Ransomware Through The Eyes Of OT Security Experts](https://cdn2.hubspot.net/hub/6931155/hubfs/Odveta%20Post-1.jpg?width=450&name=Odveta%20Post-1.jpg)
[TECHNICAL BLOG] ODVETA Ransomware Through The Eyes Of OT Security Experts
Co-written by Ofer Shaked and Maayan Fishelov Background Odveta is a ransomware that has been observed in multiple industrial networks. It doesn’t have an automated propagation mechanism, and it...
SCADAfence Experiences Substantial Growth and Industry Acclaim in 2019
2019 OT Security Summary & 2020 Predictions As the ritual dictates with every end of a year, we try to look back on the past year’s achievements as well as try to foresee what the future holds, or...
Proactive Protection for OT Systems has Arrived
SCADAfence and CyberArk have together developed a proven method for protecting utilities and manufacturing facilities from external attackers by blocking malicious access to critical OT production...
The Challenge Of Securing Building Management Systems (BMS)
An Intro to Building Management Systems (BMS) Before we dive into it, a Building Management System (BMS), a.k.a. “Smart Building Technology,” is an intelligent microprocessor-based controller...
New Orleans & UK Government Slammed by Cyberattacks – It’s Time for A Different Approach
New Orleans & UK Government Slammed by Cyberattacks
SCADAfence Platform 6.0 Is The OT Security Platform That Prevents Cyber Attacks Well In Advance
Prevent Incidents rather than Handling Them
5 OT Security Best Practices for Industrial Digital Transformation
Smart Operational Networks Come at a Security Price
Ransomware Attack At Mexico’s Pemex Could Have Been Avoided
RYUK Ransomware Cripples Mexico’s State-Owned Oil & Gas Company
IT/OT Convergence – How Two Worlds Can Converge Properly In Industrial IoT
Worlds Collide
We Are Proud To Be A Member Of The OT Cyber Security Alliance
As the global technology leaders in OT Security, we’re very proud to be founding members of a new alliance that provides technical and organizational frameworks for safe and secure operational...
Embrace Industry 4.0 Securely
Strengthening your Industry 4.0 Cybersecurity Posture The fourth industrial revolution is all about connectivity. While many manufacturers and industrial network operators want to take...
Firewalls Have Proven to be Far From Impenetrable
No single solution can offer a silver bullet for cybersecurity. Nevertheless, vital facilities such as power stations and manufacturing plants are currently in danger of relying too heavily on...
Does The Proposed 5G Network Make Global Industries and Utilities Vulnerable to Attacks?
What is 5G technology?
Scadafence’s New Release Version 5.9
Scadafence’s New Release Version 5.9, Offers Best-In-Class Detection With The Lowest False Positives Rates.