SecurityInformed.com/SourceSecurity.com’s Post

Imagine predicting OT #cyber threats, not just reacting to them. Hear from Dragos Principal Adversary Hunter Josh Hanrahan on what goes into development of OT threat intelligence and how to best leverage it to safeguard the heart of your industrial operations. Watch now → https://hubs.la/Q02dQxg20 #otcybersecurity #icscybersecurity #industrialcybersecurity #DragosIntel

The SANS Institute has released its 2023 ICS/OT Cybersecurity Survey, which reveals some interesting trends and challenges in the industrial control system (ICS) and operational technology (OT) security domain. The survey, which collected responses from 366 ICS/OT professionals across various sectors and regions, found that: 1️⃣ The average ICS/OT security budget dropped from $1.2 million in 2022 to $1.1 million in 2023, despite the increased cyber threats and incidents affecting critical infrastructure. 2️⃣ The top three challenges faced by ICS/OT security teams are lack of skilled staff, lack of visibility into the OT network, and lack of management support or awareness. 3️⃣ The most common security controls implemented by ICS/OT organizations are network segmentation, firewalls, antivirus, and backups, while the least common are threat hunting, deception, and zero trust. 4️⃣ The most common sources of ICS/OT incidents are external actors, internal errors, and supply chain compromise, while the most common impacts are operational disruption, data theft, and physical damage. The survey also provides insights into the best practices and recommendations for improving ICS/OT security posture and resilience. https://lnkd.in/eYZSgQ-a #industrialcybersecurity #IIoT #IndustrialIoT #SCADA #OTsecurity #NERC #scadahacking #cybersecurity #infosec #hacking #malware #ransomware #vulnerabilities

🔒 Are Your Systems Safe from USB Virus Threats Like LitterDrifter? In the wake of the LitterDrifter USB worm, unleashed by Russian state hackers and spreading worldwide, it's crucial to ask: How secure are your systems against such USB virus threats? 🛡️ Introducing Safe Port by TXOne Networks Safe Port stands as a robust guardian against USB virus threats, offering: -Rapid Malware Detection: Scans 7,200 files in just a minute. -User-Friendly Interface: Designed for ease of use, regardless of technical expertise. -Real-Time Security Insights: Through an intuitive dashboard. -Enhanced Protection: With TXOne core technology and physical security features. -Seamless Integration: Works effortlessly with Portable Inspector and ElementOne. -Regular Pattern Updates: Ensuring up-to-date defense against new threats. 🌐 Stay Ahead of Cyber Threats With its comprehensive approach, Safe Port ensures your systems are not just protected but also resilient against evolving USB virus threats. 💬 Want to See How Safe Port Can Secure Your Operations? Contact me to explore this cutting-edge solution and fortify your cybersecurity posture today! #Cybersecurity #USBVirusProtection #SafePort #TXOneNetworks #LitterDrifter #RussianHackers #MalwareDetection #OperationalTechnology #IndustrialCybersecurity #ThreatPrevention #CyberResilience #DataSecurity #NetworkSecurity #InnovativeTech #CyberDefenseSolutions

Our electrical substations face threats on multiple fronts from age to physical threats. One area of focus for us and our clients is how we implement cyber security to ensure our electrical grid safety and reliability. Hear from Victor Atkins in the latest edition of Cyber Defense Magazine on how expanded access to critical infrastructure systems has led to information technology (IT) and operational technology (OT) systems becoming more vulnerable and susceptible to cybersecurity threats through a variety of attack vectors. These attack vectors can include any data communication pathways that hackers can exploit to illegally enter a network or system. Read the full article here. https://lnkd.in/gQuwAafb #1898andCo #Cybersecurity

https://lnkd.in/e4hn3NRw Death of the air gap, sacrifice of security over availability, analysis of Historian vulnerabilities and the need to address Layer 1 access control are interesting topics covered in this report, which is a good read for anyone interested in the latest trends in OT Security. Although I'm not sure I agree Cisco is an OT Security leader! #industrialcybersecurity #otsecurity #icssecurity Dark Reading #cybernews #cybersecurity #icssecurity #icscybersecurity #airgap #vulnerabilitymanagement #purdue #operationaltechnology

Interconnected devices and processes in complex industries amplify susceptibility to cyber threats. Overcoming these challenges has become critical and demands immediate attention. The big question is how! Join GDS Group and OTORIO's industry experts in this Meet The Boss roundtable to discuss the urgency of OT security and craft strategies to ensure operational resilience. Register interest here:  https://lnkd.in/e2NrC9MG #cybersecurity #industry #operationaltechnology #networksecurity

⚠️ Critical Cybersecurity Vulnerabilities Expose Manufacturers to Costly Attacks From email-borne malware to the exploitation of SMB and DCOM protocols for lateral movement, these persistent threats pose significant risks to the manufacturing sector, according to new research from Trustwave. Source: https://lnkd.in/gBHDY4yN #cybersecurity #infosec #CyberAttacks #threatmanagement #manufacturing #malware #riskmanagement #vulnerabilities

⚠️ Critical Cybersecurity Vulnerabilities Expose Manufacturers to Costly Attacks From email-borne malware to the exploitation of SMB and DCOM protocols for lateral movement, these persistent threats pose significant risks to the manufacturing sector, according to new research from Trustwave. Source: https://lnkd.in/gBHDY4yN #cybersecurity #infosec #CyberAttacks #threatmanagement #manufacturing #malware #riskmanagement #vulnerabilities

Following up on our recent posts about OT cybersecurity, today we are diving into the importance of OT Security Assessments. 🛡️ In an era where technological advancements and evolving standards are pushing for faster product development, the risks of cyber threats in OT are escalating. Our OT Security Assessment Service (Red Team/Pentest) is designed to identify and mitigate vulnerabilities in both new and existing industrial equipment. With extensive experience in security testing and a history of finding and disclosing zero-days to top vendors, we ensure your equipment is up to modern security standards. By providing actionable recommendations, we help protect your assets from IP theft, production disruptions, and potential catastrophic failures. Our approach requires access to a device of the same brand and version as those on your network, utilizing our proven tools and methodologies for thorough testing. 👉 Learn more: https://lnkd.in/eBdibpss #cybersecurity #OperationalTechnology #csis #restassured

Interesting read about a cybersecurity article on cisa.gov news. Thanks Anton for sharing this article: #StopRansomeware: Black Basta. Release Date May 10, 2024 Alert Code: AA24-131A (I am no expert in Cybersecurity, lol research is solely from this resource, just wanted to share). https://lnkd.in/eB349u9V https://lnkd.in/eiftdPis This Cybersecurity Advisory warns about Black Basta ransomware, which attacks critical infrastructure and steals data. It details tactics used by the hackers and provides recommendations for prevention and response, urging victims to report incidents. ACTIONS FOR CRITICAL INFRASTRUCTURE ORGANIZATIONS TO TAKE TODAY TO MITIGATE CYBER THREATS FROM RANSOMWARE: 1.Install updates for operating systems, software, and firmware as soon as they are released. 2.Require phishing-resistant MFA for as many services as possible. 3.Train users to recognize and report phishing attempts. Having a good, secure backups and practicing restores regularly is arguably the most crucial element for a successful ransomware attack recovery. Prevention is always better than cure, implement strong cybersecurity measures to minimize the risk of ransomware attacks in the first place. #StopRansomware #CyberSecurity #BlackBasta #DataProtection #CloudComputing