SCADAfence Blog

    Lali Hadar

    Recent Posts

    OT Security Patch Management
    July 25, 2024

    OT Security Patch Management

    In the world of OT, ensuring the security and reliability of systems is critical. Disruptions to critical processes can have severe consequences, impacting production, safety, and even environmental...

    The Stuxnet Worm: A USB-based Attack with Major Consequences
    July 16, 2024

    The Stuxnet Worm: A USB-based Attack with Major Consequences

    The convergence of IT and OT has unlocked unprecedented efficiency and productivity gains across various industries. However, this also makes OT networks increasingly vulnerable to cybersecurity...

    GenAI Phishing: The Rise of GenAI-Generated Malware
    May 8, 2024

    GenAI Phishing: The Rise of GenAI-Generated Malware

    The rise of artificial intelligence in recent years has brought incredible technological advancements to the cybersecurity landscape,...

    Critical Backdoor Vulnerability in XZ Utils Recommendations
    April 17, 2024

    Critical Backdoor Vulnerability in XZ Utils Recommendations

    The open-source community was rattled in late March with the discovery of a critical backdoor vulnerability in XZ Utils, a widely used open-source data compression utility available on almost all...

    Critical Infrastructure’s Silent Threat: Part 3 - Protecting PLCs
    April 3, 2023

    Critical Infrastructure’s Silent Threat: Part 3 - Protecting PLCs

    Part 3: Protecting PLCs and Their Environment For many years, PLCs have been insecure by design. Several years into customizing and applying best practices from IT gave rise to secure protocols,...

    Critical Infrastructure’s Silent Threat: Understanding PLCs #2
    March 27, 2023

    Critical Infrastructure’s Silent Threat: Understanding PLCs #2

    Part 2: Decoding the Complexity of PLCs In part one of this series we explained how Programmable Logic Controllers (PLCs) have become key targets for cyber security attacks due to their legacy...

    Critical Infrastructure’s Silent Threat: The Invisible Enemy #1
    March 13, 2023

    Critical Infrastructure’s Silent Threat: The Invisible Enemy #1

    Part 1: The Invisible Enemy of PLCs (Programmable Logic Controllers) Programmable Logic Controllers (PLCs) are an essential part of industrial manufacturing plants. They are widely used in...

    The Rise of Iran-Sponsored Threat Actors
    January 26, 2023

    The Rise of Iran-Sponsored Threat Actors

    In mid-summer of 2022, Albania accused the Iranian government of targeting them with a series of major cyberattacks. The attacks, which targeted government servers and online portals, raised alarms...

    The Alarming Rise of Ransomware Attacks in Healthcare
    January 5, 2023

    The Alarming Rise of Ransomware Attacks in Healthcare

    On a Sunday evening in late December, 2022 The Hospital for Sick Children in Toronto was hit with a ransomware attack that took down several vital hospital network systems and caused widespread...

    Thwarting the Rise of Attack Frameworks with Post Exploitation Tools
    November 10, 2022

    Thwarting the Rise of Attack Frameworks with Post Exploitation Tools

    The Cyber Kill Chain is a framework that outlines the stages of common cyberattacks and the points in the process at which attacks can be detected or intercepted. Developed by Lockheed Martin, this...

    LockBit Ransomware Targets OT
    September 1, 2022

    LockBit Ransomware Targets OT

    What do Organizations Need to Know about LockBit? The first known ransomware attacks using what would come to be known as LockBit were reported back in 2019. Organizations that were infected with the...

    ICS / OT Security News Update | SCADAfence - August 17
    August 17, 2022

    ICS / OT Security News Update | SCADAfence - August 17

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks including BlackCat & Luna, and IoT security news. They also offer analysis of the potential impacts...

    ICS / OT Security News Update | SCADAfence - July 15
    July 15, 2022

    ICS / OT Security News Update | SCADAfence - July 15

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks and IoT security news. They also offer analysis of the potential impacts and their expert...

    ICS / OT Security News Update | SCADAfence - June 22
    June 20, 2022

    ICS / OT Security News Update | SCADAfence - June 22

    Our research team compiled the latest updates on newly announced CVEs, recent ransomware attacks and IoT security news. They also offer analysis of the potential impacts and their expert...

    Weekly ICS / OT Security News Digest | SCADAfence - May 10
    May 11, 2022

    Weekly ICS / OT Security News Digest | SCADAfence - May 10

    Our research team has put together all of the most relevant news topics in the Ransomware and IoT security fields, as well as their impacts and their expert recommendations:

    CISA's Top 15 Routinely Exploited Vulnerabilities: SCADAfence Customers Stay Protected
    May 9, 2022

    CISA's Top 15 Routinely Exploited Vulnerabilities: SCADAfence Customers Stay Protected

    On April 27, the Cybersecurity and Infrastructure Security Agency (CISA), published a joint advisory in collaboration with CSA/NSA/FBI/ACSC and other cybersecurity authorities, providing details on...

    INCONTROLLER / Pipedream: State-Sponsored Attack Tools Targeting Multiple ICS Systems
    April 14, 2022

    INCONTROLLER / Pipedream: State-Sponsored Attack Tools Targeting Multiple ICS Systems

    Dangerous New Malware Can Shut Down, Sabotage Industrial Sites

    Vulnerability Report: Rockwell PLC Unauthorized Code Injection [CVE-2022-1161 & 1159]
    April 6, 2022

    Vulnerability Report: Rockwell PLC Unauthorized Code Injection [CVE-2022-1161 & 1159]

    Two vulnerabilities in Rockwell programmable logic controllers and engineering workstation software have been disclosed. These vulnerabilities give attackers a way to modify automation processes and...

    Your Weekly ICS / OT Security News Digest - March 31st
    March 31, 2022

    Your Weekly ICS / OT Security News Digest - March 31st

    Our research team has put together all of the most relevant news topics in the ICS, IT, Ransomware & OT security fields, as well as their impacts and their expert recommendations:

    The Weekly ICS and OT Security News Digest - March 10th 2022
    March 10, 2022

    The Weekly ICS and OT Security News Digest - March 10th 2022