Industrial Security


  • Popular SoC Boards Have An Unpatchable Security Flaw, Leaving Many Automotive, Industrial And Military Components At Risk

    August 21, 2019

    Researchers conducting a routine security audit recently discovered two serious security flaws within a popular brand of System on a Chip (SoC) boards. The security vulnerability undermines secure boot capabilities. What’s most concerning is the fact that the SoC is deployed in several critical components that go into mainstream industry segments like automotive, aviation, consumer ...

  • How Threat Intelligence Helps the Energy Sector Fight Cyberespionage

    August 13, 2019

    When it comes to cyber threats, some industries have it harder than others. Few are as heavily targeted by sophisticated cyberattacks as the energy sector. Over the last decade, state-sponsored hacking groups have routinely targeted utility networks and other energy providers for the purposes of espionage and disruption. And according to the latest research, advanced persistent threat (APT) ...

  • Cyberattacks against industrial targets have doubled over the last 6 months

    August 5, 2019

    Cyberattacks designed to cause damage have doubled in the past six months and 50 percent of organizations affected are in the manufacturing sector, researchers say. On Monday, IBM’s X-Force IRIS incident response team published new research based on recent cyberattacks they have been called in to assist with, and the main trend the group is witnessing is the ...

  • Nation-State APTs Target U.S. Utilities With Dangerous Malware

    August 2, 2019

    Researchers believe that nation-state actors are behind several spearphishing campaigns targeting U.S. utility companies with a newly-identified malware, which has the capabilities to view system data and reboot machines. Lure emails were sent to three U.S. utilities companies between July 19 and 25. They purported to be from a U.S.-based engineering licensing board, but actually contained ...

  • The growing industrial cyber threat Australia is ignoring

    July 15, 2019

    Just as we are behind on internet connectivity in Australia, we are also lagging on cyber security for the industrial infrastructure that will increasingly run society. We currently have a critical under-investment and will only fall further behind without government action. Australians are largely unaware of this new cyber security threat, as commentary and policies focus ...

  • Critical infrastructure at risk again from Stuxnet-like attack

    July 11, 2019

    A dozen vulnerabilities including previously undisclosed exploits have been discovered in software used to maintain industrial control systems (ICS) which could lead to another devastating attack on highly-prevalent critical infrastructure. The researchers from Tenable likened the vulnerabilities to those in the family of devices affected by the infamous Stuxnet attack on an Iranian nuclear facility, adding that the software affected ...

  • US cyberwar against Russia is hypothetical possibility, says Kremlin spokesman

    June 17, 2019

    Russian Presidential Spokesman Dmitry Peskov believes that the United States’ cyberwar against Russia is a hypothetical possibility. He made the statement to the media in response to claims by The New York Times that US secret services over the past year were increasingly active in their attempts to cripple computer malware inside Russia’s power grid. Peskov ...

  • TRISIS Group, Known for Physical Destruction, Targets U.S. Electric Companies

    June 14, 2019

    XENOTIME, a destructive APT linked to Russia, has broadened its target set beyond Middle East oil and gas. XENOTIME, the APT group behind the TRISIS industrial control system (ICS) event, has expanded its focus beyond the oil and gas industries, according to researchers. The group has recently been seen probing the networks of electric utility organizations ...

  • As hackers get smarter, America’s energy industry is shoring up its defenses

    April 22, 2019

    America is under attack. Every day, we’re besieged by a group of enemy combatants. Nameless, faceless, and spread throughout the world, this group is united by a single aim: to upend American life as we know it. These attackers are not soldiers or terrorists in the traditional sense. They are hackers, on a mission to cause ...

  • 4 Stuxnet-Related APTs Form Gossip Girl, an ‘Apex Threat Actor’

    April 9, 2019

    The infamous Stuxnet family of industrial sabotage malware is likely the work of a mysterious “supra-group” that Chronicle researchers Juan Andres Guerrero Saad and Silas Cutler have dubbed Gossip Girl; and it’s a group that turns out to be larger and far busier than previously known. In a session at the Security Analyst Summit 2019 in Singapore this ...