Organizations often grapple with the question of whether relying solely on Microsoft for cybersecurity is enough. Kevin Robertson, chief operating officer and co-founder of Acumen, makes the case for including best in breed security technology and services from specialized vendors.
Pikabot has posed significant challenges to many Endpoint Detection and Response (EDR) systems through its employment of an advanced technique to hide its malicious activities known as “indirect system calls” (or “indirect syscalls”). This is only one of multiple techniques this family employs to evade...
Most OT environments deploy some level of defense in depth to provide protection or worst-case firefighting capability. Current state of the art endpoint protection solutions are necessary, but not sufficient to stop anything but the most basic threats. Bottom line: today’s solutions aren’t working against this...
Joseph Couture, regional information security officer for the Americas and CISO for the United States at Ørsted, discusses the unique regulatory challenges in the energy sector, the importance of risk management, and how Ørsted addresses cybersecurity to ensure safe and reliable energy delivery.
The onset of war between Israel and Hamas led to a spike in cyberattacks against operational technology, says Microsoft in a warning to critical infrastructure operators about the dangers of internet-exposed operational technology.
Australian critical infrastructure organizations must enable greater convergence between their information technology and operational technology teams to better respond to cybersecurity threats to their OT infrastructure, according to a new study by Palo Alto Networks.
Defenders of operational technology environments should look beyond the technical controls and incident response plans they've put in place. They also need to consider how attackers might undermine confidence in the service itself, says Ian Thornton-Trump, CISO of Cyjax.
The Environmental Protection Agency is announcing plans to ramp up its enforcement of basic security regulations for thousands of drinking water systems across the United States after recent inspections found "alarming cybersecurity vulnerabilities" in the majority of systems nationwide.
Rockwell Automation warned customers to disconnect industrial control systems from the internet, citing escalating cyberthreats and rising global geopolitical tensions. Disconnecting these systems is a proactive measure to reduce the attack surface.
Multiple Chinese cyberespionage groups, including Volt Typhoon, are using operational relay box networks, aka ORBs, built using leased proxy servers and compromised or end-of-life routers, to avoid detection and complicate efforts to track their activities, warns Google Cloud's Mandiant.
From malware analyst and ethical hacker to CISO of AboitizPower, Alexander Antukh's cybersecurity journey has shaped his leadership style. He discusses strategies for addressing cybersecurity threats in critical infrastructure and ensuring secure remote access.
While critical infrastructure operators have historically focused on securing their operational technology networks by preventing intrusions, the ongoing increase in nation-state attacks demands they master the ability to "identify, detect, respond and recover," said Robert M. Lee, CEO of Dragos.
In the wake of geopolitical tensions, nation-state threats have "crossed the line more often than they ever have," said Dawn Cappelli, head of OT-CERT at Dragos, warning of the growing threat to critical infrastructure and emerging challenges for small and medium enterprises.
Chinese-backed espionage and cyber disruption pose a major threat to global critical infrastructure as Beijing races for global edge, British and U.S. cyber officials warned Tuesday. Responding to the scale and complexity of Chinese hacking is a top British priority.
Multiple types of Telit Cinterion cellular modules for IoT and machine-to-machine devices, which are widely used across industrial, financial services, telecommunications and healthcare environments, are vulnerable to being remotely compromised via malicious SMS messages, security researchers warn.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.