Author: Admin

A new attack can weaponize programmable logic controllers (PLCs) to exploit engineering workstations and subsequently invade OT and enterprise networks.  The attack, which targets engineers working on industrial networks, configuring and troubleshooting PLCs, was developed by the Team82 group by Claroty, who called it the “Evil PLC Attack.” According to the security experts, the research resulted in working proof-of-concept exploits against seven market-leading automation companies: Rockwell Automation, Schneider Electric, GE, B&R, XINJE, OVARRO and Emerson,…

A time honored tradition in many US high schools is for students in their final year to do some kind of prank as part of their senior year. As it turns out, some pranks or more interesting from a hacker perspective, than others. At the at the DEFCON 30 security conference in Las Vegas, Minh Duong outlined how he, along with a team of friends, was able to gain control of the presentation and public address…

Repelling Cyber Criminals Trying to Capitalize on a Crisis By Kevin Orr, President, RSA Federal Current geopolitical crises unfolding around the globe have far-reaching implications. In just a few short months,  we have seen change on a global scale, impacting people, business and society as a whole. Unfortunately, it is this type of environment in which cyber criminals thrive. As a result, organizations today must quickly adapt to new market dynamics, evolving partner and customer…

Technical limitations are barriers to success but a new report finds that DevSecOps could be a game changer and will see growing market traction. Image: Adobe Stock Only 22% of respondent organizations have developed a formal DevSecOps strategy integrating security into software development life cycle processes, a newly released report finds. But of those, an overwhelming percentage reported a positive impact on accelerating incident detection (95%) and response (96%) efforts, according to observability data platform…

Image: Adobe Stock As the CISO role continues evolving from a back office IT function to taking on a larger enterprise focus, CISOs are assuming more strategic and risk-related responsibilities. They are also facing a number of personal risks as the importance of the role continues to grow. A new study from executive search firm Heidrick & Struggles finds that stress (59%) and burnout (48%) are the largest personal risks respondents in the U.S. face….

Ransomware Preparedness: Why Organizations Should Plan for Ransomware Like Disasters As ransomware has cemented itself as one of the biggest cybersecurity threats to companies around the globe, it has become increasingly important that organizations treat ransomware attacks like they would a natural disaster and establish a robust preparedness plan. Background In 2020, Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) called ransomware the “most visible, disruptive cyber threat” as he…

Elaborating on some points from my previous post on building innovation ecosystems, here’s a look at how digital twins, which serve as a bridge between the physical and digital domains, rely on historical and real-time data, as well as machine learning models, to provide a virtual representation of physical objects, processes, and systems. Keith Bentley of software developer Bentley Systems describes digital twins as the biggest opportunity for IT value contribution to the physical infrastructure…

Service level agreements (SLAs) have long been the standard operational metrics for technology services, measuring performance in areas such as systems availability or resolution time. But a new approach to gauging IT performance has begun to take hold in organizations where ensuring an optimal customer experience has become paramount. Experience level agreements — XLAs, for short — go beyond traditional IT SLAs to focus on the end customer experience, tracking measurements such as customer or…