When will we see another Stuxnet & Nitro Zeus attack against Iran?

When will we see another Stuxnet & Nitro Zeus attack against Iran?

Eight years after we had uncovered that Stuxnet was a targeted cyber-physical attack against the Iranian nuclear program, both the United States and Israel find themselves threatened by the prospect of an Iranian breakout towards nuclear weapons production. This...
Importing OT/ICS Asset Data into your Enterprise Applications

Importing OT/ICS Asset Data into your Enterprise Applications

Suppose you already have a great OT asset management system. It automatically discovers the identity and configuration of your PLCs, RTUs, network switches, operator stations and so forth. Your engineers use this system as their central hub for documenting the...
Misjudging OT security risk, part 2: Comparing cost/benefit

Misjudging OT security risk, part 2: Comparing cost/benefit

In a preceding blog article we discussed the logical flaw in network anomaly detection marketing collateral: Vendors emphatically advocate “passive scanning” with the argument that “active scanning” would be too dangerous, yet focus on...