SEARCH
Archive
MITRE Adds ICS-Specific Techniques to ATT&CK Framework
MITRE adds information about threat groups, malware, and techniques used by adversaries in attacks against industrial control systems in its ATT&CK framework.
Enterprises Lack Clear Security Guidance for 5G
Enterprises need guidance on how to get ready for 5G networks, but the current fear-mongering about Huawei doesn't give enterprises the information they need to make sure the applications are secure.
Attack on Power Utility Highlights Need for Layered Defense
The key takeaway from the NERC report about the attack against a US electric utility isn't that companies need to be patching, but that layered defense is still the best approach for keeping systems and networks safe.
Enterprises May Not Know Which Devices Have URGENT/11 Flaws
VxWorks is the operating system no one has ever heard of, but it is widely used in industrial control systems, robotics and automation, industrial control systems, and Internet of Things. The URGENT/11 group of vulnerabilities in these devices can be exploited remotely.
Moody’s Says Regulation Would Benefit Gas Pipeline Operators
Credit rating agency Moody's weighed in on the security of natural gas pipeline operators, urging that mandatory cybersecurity standards would harden the sector against potential attacks.