09 Jul 2019

Cybersecurity should not be an afterthought within industrial environments

Applied Risk warns that even though cyber risk awareness has increased, cybersecurity is still often an afterthought in industrial environments where new technologies are regularly deployed without proper testing. As a result, Operational Technology (OT) used in critical infrastructure is often vulnerable to cyberattacks. The most common flaws in industrial

Read More
03 Jul 2019

US wants to isolate power grids with ‘retro’ technology to limit cyber-attacks

The United States is close to starting a two-year pilot program aimed at bolstering the security of the power grid by making use of analog technologies. The program is part of the Securing Energy Infrastructure Act (SEIA) that has already been approved by the Senate, but still needs to pass

Read More
17 Jun 2019

Triton Attackers Seen Scanning US Power Grid Networks

New research by Dragos indicates that the threat actors behind the 2017 Triton (aka Trisis) malware attack that shut down a petrochemical plant in Saudi Arabia, started to scan power grids in the US and Asia-Pacific regions at the end of last year. Because of this, analysts are worried that

Read More
17 Jun 2019

US Planted Powerful Malware in Russia’s Power Grid: Report

US intelligence officials have been investigating the Russian power grid since at least 2012 and recently began targeting power grid control systems in offensive operations, according to a recent New York Times report based on information from current and former government officials. The offensive operations involved infecting Russian systems with

Read More
02 May 2019

Only six TSA staffers are overseeing US oil&gas pipeline security

A recent security audit[pdf] of the Transportation Security Administration (TSA) by the US Government Accountability Office (GAO) has exposed serious shortcomings in the TSA’s efforts to protect the US pipeline system for oil and gas. The report shows that both the physical security and cybersecurity of this critical system, which

Read More
29 Apr 2019

Ransomware Hits Yet Another U.S. Airport

In the latest example of the growing cyber threat to critical infrastructure, Cleveland Hopkins International Airport was hit by a ransomware attack last week. The ransomware disrupted the airport’s systems used for email, payroll and digital records. In addition, most screens around the airport that are used for digital signage

Read More
19 Apr 2019

Weather Channel Knocked Off-Air in Dangerous Precedent

On Thursday morning, a “malicious software attack” on the network of US pay television channel The Weather Channel (TWC) forced the station to air 90 minutes of canned content instead of live footage, after which it restored its live broadcast “through backup mechanisms.” While the incident may not strike most

Read More
11 Apr 2019

Triton ICS Malware Hits A Second Victim

FireEye researchers say that they have detected a second attack involving the highly disruptive Triton (aka Trisis) malware. Triton is considered to be incredibly dangerous as it is capable of remotely disabling safety systems. In the summer of 2017, Triton malware shut down a petrochemical plant in Saudi Arabia. The

Read More
09 Apr 2019

NATO launches cyber-defense drill simulating elections under attack

On Tuesday, NATO’s Cooperative Cyber Defence Centre of Excellence is launching Locked Shields 2019, a massive four-day defense exercise held in Estonia in which over 1,000 cybersecurity experts will be defending a fictional country from highly disruptive cyberattacks on critical infrastructure while elections are taking place. In addition to NATO’s

Read More
08 Apr 2019

Nine in 10 CNI Providers Damaged by Cyber-Attacks

A new report by the Ponemon Institute and Tenable highlights the growing cyber threat to critical infrastructure. The survey found that a whopping 90% of critical infrastructure providers suffered a cyberattack resulting in a data breach and/or downtime in the last two years, while 62% experienced multiple attacks. About 1

Read More