International Cyber Expo International Cyber Expo

Industrial Internet of Things

Forescout

Forescout Technologies Inc. has been added to the NATO Information Assurance Product Catalogue (NIAPC), marking formal recognition that the company's cybersecurity platform meets NATO's information assurance requirements for deployment across mission-critical defence environments. Maintained by the NATO Communications and Information Agency (NCIA), the NIAPC serves as a trusted catalogue of cybersecurity technologies that have been validated for use by NATO military and civilian organisations. Inclusion demonstrates that Forescout's platform satisfies the alliance's stringent standards for...

Read moreDetails
crypto-industry

Digital money has fundamentally upended how people handle their finances. It has created new ways to buy, invest, and own things, all without relying on traditional banking. Digital art and even property are moving online, and millions now track metrics like the ETH to USD rate to figure out what their holdings are worth.  At the same time, this type of technological upgrade presents a significant problem for security experts. Cryptocurrencies are not only new...

Read moreDetails
Salt Security Announces Industry First Solution to Secure API Actions Taken by AI Agents

Forescout Vedere Labs published a report exposing how a pro-Russian hacktivist group was duped into thinking they had hacked a European water facility, unaware their target was in fact a carefully crafted honeypot.   This “hack” provided Forescout researchers the rare opportunity to see first-hand how these groups look for and exploit weaknesses in critical infrastructure. Attackers were able to break in with default credentials, deface the human-machine interface and tamper with PLC settings. The group,...

Read moreDetails
BT lands major network and cyber security deal with NATS

Almost all businesses worldwide have a singular aim that, if implemented correctly, has the potential to increase revenue, boost customer satisfaction, and dramatically reduce costs. But what is this holy grail that can, in one fell swoop, improve operations to such a degree that it can seem like sorcery? Operational organisation is a term often banded around by marketing gurus and business consultants to create a buzz around their services. However, modern technology has made...

Read moreDetails
Q&A – Dr. Ryan Heartfield: 3 things to remember when securing your Industrial OT environment

For as long as digital systems have exerted control over physical machines and their output, the need, and associated questions in how to proportionately secure them have existed. Manufacturing, agriculture, critical national infrastructure, and healthcare to name but a few, are all industrial verticals which now more than ever have a considered need for cybersecurity controls to protect their Operational Technology (OT) systems and equipment which interact and impact the physical environment. Historically, in a...

Read moreDetails
Over 8000 VNC instances left exposed, researchers find

Researchers have discovered 8000 exposed Virtual Network Computing instances, which could put numerous global organisations at risk of remote compromise. As a matter of fact, the instances were managed by critical infrastructure (CNI) organisations, who are responsible for water treatment plants, manufacturing plants and research facilities. With disabled authentication, malicious actors have the ability to hijack certain endpoints and with it, the industrial control systems these may be connected to. This is because VNC is...

Read moreDetails
Armis: Top Performer in Asset Visibility and Real-Time Detection in MITRE Engenuity ATT&CK® Evaluations for Industrial Control Systems (ICS)

  Armis, the unified asset visibility and security platform, disclosed five critical vulnerabilities, known as TLStorm 2.0, in the implementation of TLS communications in multiple models of network switches. The vulnerabilities stem from a similar design flaw identified in the TLStorm vulnerabilities (discovered earlier this year by Armis), expanding the reach of TLStorm to millions of additional enterprise-grade network infrastructure devices.   In March 2022, Armis first disclosed TLStorm—three critical vulnerabilities in APC Smart-UPS devices....

Read moreDetails
TLStorm: Armis finds Three Critical Zero-Days in APC Smart-UPS devices that could impact over 7 in 10 organisations worldwide

https://vimeo.com/683449370/53eb067506   Armis, unified asset visibility and security company, announced the discovery of three zero-day vulnerabilities in APC Smart-UPS devices that can allow attackers to gain remote access. If exploited, these vulnerabilities, collectively known as TLStorm, allow threat actors to disable, disrupt, and even destroy APC Smart-UPS devices and attached assets, researchers have warned.   Uninterruptible power supply (UPS) devices provide emergency backup power for mission-critical assets in data centres, industrial facilities, hospitals, and more....

Read moreDetails
Armis: Top Performer in Asset Visibility and Real-Time Detection in MITRE Engenuity ATT&CK® Evaluations for Industrial Control Systems (ICS)

 Armis, the unified asset visibility and security platform provider, has formally announced its leadership in the OT / ICS cybersecurity category with the world’s leading enterprises after seeing a huge 400% increase in demand this past year. Only the Armis platform spans multiple verticals and can cater to the convergence of IT & OT. No other cybersecurity provider can secure OT, ICS, IT, IoT, IIoT & IoMT across multiple industries and sectors. Armis was rated...

Read moreDetails
Armis discloses critical vulnerability that allows remote takeover of Schneider Electric industrial controllers

Researchers at Armis, the unified asset visibility and security platform provider, have disclosed the discovery of an authentication bypass vulnerability in Schneider Electric’s Modicon programmable logic controllers (PLCs) that can lead to remote-code-execution (RCE). The vulnerability, dubbed Modipwn, allows for a complete takeover of impacted devices by leveraging the UMAS protocol, and impacts Modicon M340, M580 and other models from the Modicon series. Millions of devices use these PLCs and are now deemed to be at...

Read moreDetails
Page 1 of 2 1 2