cybersecurity

A primitive but unique ransomware variant that emerged in mid-December can forcibly stop a number of processes, including multiple items related to industrial control system (ICS) operations, industrial cybersecurity firm Dragos warned in a detailed report on Feb. 3. The ransomware known as “EKANS” (or “Snake,” which is “EKANS” spelled backwards) is “relatively straightforward” as […]

The Federal Energy Regulatory Commission (FERC) on Jan. 23 approved two new reliability standards related to transmission system planning performance and cybersecurity. However, it also proposed to retire 74 reliability standard requirements, which it deemed duplicative or unnecessarily burdensome. Among the spate of actions it took on Thursday, FERC also green-lighted retaining the North American […]

JOHNSTON, R.I., USA—As part of its continuing commitment to cyber risk assessment, prevention and control, FM Global, one of the world’s largest commercial property insurers, has become one of the first insurance carriers to offer industrial control systems (ICS) evaluations at client locations as part of its routine engineering site visits. The ICS evaluation will […]

Acquisition will enhance Rockwell Automation’s ability to deliver IT/OT cybersecurity services globally January 08, 2020 07:00 AM Eastern Standard Time MILWAUKEE–(BUSINESS WIRE)–Rockwell Automation, Inc. (NYSE: ROK) today announced that it has signed an agreement to acquire privately held Avnet Data Security, LTD, an Israeli-based cybersecurity provider with over 20 years of experience providing cybersecurity services. […]

Reliability and resiliency are buzzwords in today’s world of power generation. The focus is often on valuing those attributes, be it through subsidizing baseload power to make it more economically viable, or through other means. Reliable delivery of electricity, of course, also depends on cyber-resilient systems, at power plants and across the grid. Cyberattacks against […]

Framingham, MA — Positive Technologies experts have discovered a total of 17 vulnerabilities in the SPPA-T3000. Vladimir Nazarov, Head of ICS Security at Positive Technologies, said: “By exploiting some of these vulnerabilities, an attacker could run arbitrary code on an application server, which is one of the key components of the SPPA-T3000 distributed control system. […]

Twenty-three projects chosen by the Department of Energy (DOE) in response to its 2019 Grid Modernization Lab Call provide a broad look at the critical issues that are roiling the nation’s power sector, as well as the tools and technologies that it has determined will best bolster the grid of the future in the near […]

Many networks across a variety of verticals including government, military, financial services, power plants, and industrial manufacturing have been so-called “air-gapped.” This means they are physically and logically isolated from other networks where communication between these networks is not physically or logically possible. This can be a good thing or bad thing depending on your […]

What does it mean to have “extreme visibility” in an operational technology (OT) environment? According to Claroty, a New York-based company that offers cybersecurity products for industrial control systems, it’s having the ability to see all assets on a network, knowing what they are, and understanding what functions they perform. The company says the more […]

Delivering energy has centered on the fundamental tenant of being reliably available. As energy providers strive to maintain that availability, they all too often push security to the backburner. Many unsafe practices have fallen into place for the sake of speed and efficiency, including the use of default and shared passwords, open access, and little […]