-
Dec 8, 2024 | 
industrialcyber.co | Anna Ribeiro |sarah jane Freeman |Nav Sharma |Ilan Barda |Sandeep Lota |Joe Weiss
Aligning risk and consequence-based approaches across IT and OT environments is crucial for robust cybersecurity. In assessing risk and consequence, IT and OT systems present unique challenges. IT environments typically focus on data integrity and confidentiality, while OT systems prioritize operational continuity and safety. This divergence necessitates a comprehensive strategy considering both domains’ specific risks and consequences.
-
Jul 24, 2024 | 
insight.scmagazineuk.com | Ilan Barda
Understanding OT security and supply chain. In March 2024, the U.S. government sent a letter to Shanghai Zhenhua Heavy Industries (ZPMC), a Chinese-based manufacturer with close ties to the Chinese Communist Party (CCP), demanding answers about cellular modems discovered on Chinese-built cranes deployed in US seaports. The modems were installed during manufacturing, but were not part of the equipment contract and offered no functional benefit to the ports that purchased the cranes.
-
Jul 17, 2024 | 
automation.com | Ilan Barda
An effective OT security regimen must be able to secure the entire environment–legacy as well as the latest devices.
In a recent survey conducted by ABI Research, three-quarters of industrial organizations reported that they had detected malicious activity within their OT network, and 24% were forced to shut down OT operations within the last year due to a successful attack.
-
Jul 16, 2024 | 
automation.com | Ilan Barda
Supply chain security is a serious concern for operational technology (OT) and one that must be addressed immediately.
In March 2024, the U.S. government sent a letter to Shanghai Zhenhua Heavy Industries (ZPMC), a Chinese-based manufacturer with close ties to the Chinese Communist Party (CCP), demanding answers about cellular modems discovered on Chinese-built cranes deployed in US seaports.
-
Jul 12, 2024 | 
smartindustry.com | Ilan Barda
In a recent survey conducted by ABI Research, three-quarters of industrial organizations reported that they had detected malicious activity within their OT network, and 24% of them were forced to shut down OT operations within the last year due to a successful attack. If that’s not enough to have OT companies looking for new cybersecurity solutions, European Union companies have the added pressure of NIS2’s looming October deadline.
-
Jun 23, 2024 | 
industrialcyber.co | Anna Ribeiro |Charlie Lewis |Ilan Barda |Dawn Cappelli
Securing C-Level buy-in is becoming increasingly crucial for implementing cybersecurity measures across industrial and operational environments. Support from top management helps to ensure appropriate resource allocation and emphasizes the importance of implementing cybersecurity in the organizational structure. C-level executives play a critical role in integrating cybersecurity practices by setting the tone of seriousness and protocol compliance from top to bottom.
-
May 22, 2024 | 
industrialcyber.co | Ilan Barda
The NIS2 directive is about five months away from becoming law in the European Union (EU). While some organizations are sprinting ahead toward compliance, others are struggling to get off the starting blocks. The clock’s not stopping, and after October 17, 2024 non-compliant facilities will face onerous penalties and the possibility of jail time for executives. This article should help those managing operational technology (OT) facilities get on the path toward compliance.
-
May 12, 2024 | 
industrialcyber.co | Ilan Barda
In 2020, a cybersecurity firm called FireEye reported the discovery of a sophisticated, highly targeted cyber-intrusion. They detected a backdoor in SolarWinds Orion software, which, when the software was installed on thousands of servers by way of a routine patch, gave threat actors access to the sensitive files and data of US government agencies, private enterprises, and publicly traded companies.
-
Apr 14, 2024 | 
industrialcyber.co | Ilan Barda
OT networks are under increasing attack. Water distribution, oil extraction, maritime, transportation, manufacturing, pharmacy, health services, and other critical industries have all been hacked multiple times. SCADA, ICS, and safety systems have been corrupted, confidential information has been hijacked, and operators have had to pay heavy ransoms to regain the use of their assets and data.
-
Apr 9, 2024 | 
metaverseinsider.tech | Ilan Barda |Jack Boreham
By Ilan Barda, Founder and CEO at RadiflowThe investigation into Baltimore’s Francis Scott Key Bridge collapse has only just begun, but we’ve already seen news reports containing an unclassified memo from the Cybersecurity and Infrastructure Security Agency (CISA) and comments from the Department of Homeland Security concerning the cause.
