ICS

Protecting your ICONICS GENESIS SCADA HMI System from Security Vulnerabilities (plus White Paper)


As mentioned in a blog article we wrote earlier this week, an Italian “Security Researcher” named Luigi Auriemma published thirty-four SCADA product vulnerabilities against four SCADA products (the complete list of vulnerabilities and compa


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


More SCADA Security Threats: Where There’s Smoke, There’s Fire


One of the unfortunate facts about security is that if you can find one vulnerability, you can usually find lots more. Vulnerabilities are not just bad luck – they are caused by a poor Software Security Assurance (SSA) process (or a complete lack of one).


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


The Italian Job – Multiple SCADA / ICS Vulnerabilities Go Public


Selling the concept of security for SCADA and ICS might still be struggling, but publishing vulnerabilities for SCADA and ICS equipment seems to be a growth industry.

 

Thirty-Four SCADA Product Vulnerabilities

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Summing up Stuxnet in 4 Easy Sections - (plus Handy Presentation)


There has been a lot of media coverage and discussion of the Stuxnet malware, and its impact on industrial control system (ICS) and SCADA security. We are one of the groups guilty of creating a Stuxnet publishing industry.

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


The Many Paths of Stuxnet – How Robust are Today’s Best Practice Systems?


Over the past four months, Joel Langill, Andrew Ginter and I have been working on a really cool research project. We have been investigating how Stuxnet would infect an industrial site protected by a “high security architecture.”

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


A Nasty New World of Cyber Threats for ICS and SCADA Security


February has not been a good month for ICS and SCADA security, at least not if you want to feel secure.

 

Vendor Vulnerability Reports

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Stuxnet: Staying Ahead of the Bad Guys


Last week I had the chance to attend a very interesting seminar at the Stanford Research Institute called the DHS/SRI Infosec Technology Transition Council Meeting (ITTC). It wasn’t focused on SCADA or ICS or even Stuxnet, yet some of the talks had a lot of applicability to the control systems world.

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Industrial Network Security – is the Process Control World getting Serious about it?


Recently a partner of ours, Invensys Operations Management, won the prestigious Breakthrough Product of the Year Award for 2010 from Processing Magazine.


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Stuxnet Guidance: The Good, the Bad and the Ugly


Over the past month, there has been no shortage of reports on how Stuxnet is attacking the Iranian Nuclear Program. Unfortunately, good advice on what exactly Industrial Control System (ICS) owner/operators can do to protect themselves against Stuxnet (and its future offspring) is in short supply. In fact much of what passes as technical guidance is either too IT-focused or simply wrong.


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Human Centered Design is Key to Industrial Control Systems Security and Safety


In reviewing material about Industrial Control Systems (ICS) there is one element that, in my opinion, is the most important factor to consider - especially in light of the recent hubbub about Stuxnet and ICS Security. That element is human centered design.

 


© Tofino Security 2013 | All Rights Reserved | Tofino Security is a Belden Brand


Syndicate content