What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-10-20 13:00:00 | Operationalizing Cyber Threat Intelligence (CTI): Key Components to Consider (lien direct) | >Congratulations! You've decided to operationalize your threat intelligence. We love to hear that! But, what does that mean? How do... The post Operationalizing Cyber Threat Intelligence (CTI): Key Components to Consider first appeared on Dragos. | Threat | ||
|
2022-10-19 15:24:59 | Inherent Features of Dragos Platform Enable Federal Agencies to Meet New CISA BOD Requirements (lien direct) | >The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a Binding Operational Directive (BOD) last week, requiring federal civilian executive... The post Inherent Features of Dragos Platform Enable Federal Agencies to Meet New CISA BOD Requirements first appeared on Dragos. | |||
|
2022-10-17 18:33:59 | New Threat Perspective Outlines Risks to Australian Electric Organisations (lien direct) | >Dragos recently published a threat perspective report focusing on the observed threats to electric organisations within Australia. The Australian Cyber... The post New Threat Perspective Outlines Risks to Australian Electric Organisations first appeared on Dragos. | Threat | ||
|
2022-10-12 22:25:18 | New Knowledge Pack Released (KP-2022-007) (lien direct) | >KP-2022-007 includes characterizations for Emerson Ovation and Triconex. Detections also included for DeltaV, CaddyWiper, Ramsonware, NGROK, Cobalt Strike, Sality, and others. The post New Knowledge Pack Released (KP-2022-007) first appeared on Dragos. | |||
|
2022-10-11 12:00:00 | Achieving Real-Time OT Monitoring and Mitigation with Dragos, Sentar, and Siemens Government Technologies: A MOSAICS Compatible Solution (lien direct) | >As adversaries continue to leverage the cyber domain to disrupt critical infrastructure and assets, defense and critical infrastructure organizations must... The post Achieving Real-Time OT Monitoring and Mitigation with Dragos, Sentar, and Siemens Government Technologies: A MOSAICS Compatible Solution first appeared on Dragos. | |||
|
2022-10-05 11:00:00 | How SMBs Can Use the Collection Management Framework (CMF) to Prepare for a Cyber Incident (lien direct) | >Most small and some medium-sized businesses (SMBs) with industrial environments do not have the internal technical resources to address corporate... The post How SMBs Can Use the Collection Management Framework (CMF) to Prepare for a Cyber Incident first appeared on Dragos. | |||
|
2022-10-04 22:27:00 | Using Threat Intelligence to Build a Mature OT Network Defense (lien direct) | >Understanding how to use threat intelligence reporting for visibility into threats to your operational technology (OT) network and how to... The post Using Threat Intelligence to Build a Mature OT Network Defense first appeared on Dragos. | Threat | ||
|
2022-09-29 13:00:00 | Updates to the Dragos Platform – Growing Together As We Defend OT Environments Globally (lien direct) | >One of the most common challenges we hear from executives responsible for protecting their industrial operations is an inherent lack... The post Updates to the Dragos Platform – Growing Together As We Defend OT Environments Globally first appeared on Dragos. | |||
|
2022-09-22 14:55:44 | New Dragos Report Highlights Threats Targeting Water & Wastewater Systems in the GCC (lien direct) | >Dragos published the Gulf Cooperation Council (GCC) Water & Wastewater Systems Cyber Threat Perspective that highlights cyber threats currently targeting... The post New Dragos Report Highlights Threats Targeting Water & Wastewater Systems in the GCC first appeared on Dragos. | Threat | ||
|
2022-09-21 12:00:00 | Securing Industrial Control Systems (ICS) Against Cyber Threats with Dragos & Palo Alto Networks Integration (lien direct) | >As industrial organizations face modernization and regulatory requirements for digital transformation efforts, cyberthreats have become a serious challenge. Cybersecurity teams... The post Securing Industrial Control Systems (ICS) Against Cyber Threats with Dragos & Palo Alto Networks Integration first appeared on Dragos. | |||
|
2022-09-21 10:00:00 | A Control Loop Learning Lab: Electricity By the Numbers (lien direct) | >In the Learning Lab segment of the Control Loop podcast that aired on Wednesday, September 21, 2022, I provided a... The post A Control Loop Learning Lab: Electricity By the Numbers first appeared on Dragos. | |||
|
2022-09-15 18:16:30 | Don\'t Miss the Dragos Capture the Flag (CTF) Event at DISC 2022 (lien direct) | >It may only be September, but here at Dragos we are gearing up for our annual Dragos Industrial Security Conference... The post Don't Miss the Dragos Capture the Flag (CTF) Event at DISC 2022 first appeared on Dragos. | |||
|
2022-09-13 13:00:00 | Three Essential Building Blocks for an OT Cybersecurity Foundation (lien direct) | >For industrial organizations, digital transformation has officially arrived. No longer just an IT initiative or a buzzword, digital transformation is... The post Three Essential Building Blocks for an OT Cybersecurity Foundation first appeared on Dragos. | |||
|
2022-09-08 13:00:00 | Ransomware Attacks in Small and Medium-Sized Organizations and Manufacturing Are On the Rise (lien direct) | >Dragos OT-CERT offers free resources to small and medium-sized organizations that lack OT cybersecurity expertise. Data regarding recent ransomware attacks... The post Ransomware Attacks in Small and Medium-Sized Organizations and Manufacturing Are On the Rise first appeared on Dragos. | Ransomware | ||
|
2022-09-08 02:49:24 | (Déjà vu) How to Identify Cyber Critical Systems with a Crown Jewel Analysis (lien direct) | >In the recently issued U.S. Transportation Security Administration (TSA) Security Directive Pipeline-2021-02C, owners and operators of critical pipelines and liquified... The post How to Identify Cyber Critical Systems with a Crown Jewel Analysis first appeared on Dragos. | |||
|
2022-09-08 02:49:24 | Protected: How to Identify Cyber Critical Systems with a Crown Jewel Analysis (lien direct) | >In the recently issued U.S. Transportation Security Administration (TSA) Security Directive Pipeline-2021-02C, owners and operators of critical pipelines and liquified... The post How to Identify Cyber Critical Systems with a Crown Jewel Analysis first appeared on Dragos. | |||
|
2022-09-08 01:02:23 | Understanding and Mitigating Insider Threats in Operational Technology (OT) Systems (lien direct) | >One of the biggest risks to operational technology (OT) security is not a zero-day rootkit, but the people onsite day... The post Understanding and Mitigating Insider Threats in Operational Technology (OT) Systems first appeared on Dragos. | |||
|
2022-08-31 18:28:27 | Protected: Food Processing Special Report Reveals Increasing Concern of Cyber Attacks for Food & Beverage Industry (lien direct) | >One of the biggest risks to operational technology (OT) security is not a zero-day rootkit, but the people onsite day... The post Understanding and Mitigating Insider Threats in Operational Technology (OT) Systems first appeared on Dragos. | |||
|
2022-08-10 14:25:52 | How Adversaries Use Spear Phishing to Target Engineering Staff (lien direct) | >Spear phishing is one of the most commonly used initial access vectors adversaries leverage to gain a foothold into a... The post How Adversaries Use Spear Phishing to Target Engineering Staff first appeared on Dragos. | |||
|
2022-08-09 10:00:00 | Dragos Industrial Ransomware Analysis: Q2 2022 (lien direct) | >Not surprisingly, ransomware groups continued to target industrial organizations and infrastructures and disrupt operational technology (OT) operations in the second... The post Dragos Industrial Ransomware Analysis: Q2 2022 first appeared on Dragos. | Ransomware | ||
|
2022-08-01 13:00:00 | How to Implement the Revised TSA Pipeline Security Directive (lien direct) | >On July 21, 20221, the US Transportation Security Administration (TSA) made a significant change to their security directive for owners... The post How to Implement the Revised TSA Pipeline Security Directive first appeared on Dragos. | |||
|
2022-07-27 20:47:49 | Building the SANS ICS Summit Capture the Flag (CTF) Competition (lien direct) | >For this year’s SANS Industrial Control System (ICS) Summit in June 2022, the SANS Institute and Dragos again partnered to... The post Building the SANS ICS Summit Capture the Flag (CTF) Competition first appeared on Dragos. | |||
|
2022-07-21 18:49:03 | Six Months Later: Assessing the OT and ICS Risks of the Log4j Vulnerability (lien direct) | >It has been six months since Log4j lit up security headlines. When the Alibaba Cloud Security team disclosed the Log4j... The post Six Months Later: Assessing the OT and ICS Risks of the Log4j Vulnerability first appeared on Dragos. | Vulnerability | ||
|
2022-07-19 14:00:00 | OT Cybersecurity for IT Professionals: 5 Things OT Wants IT to Know (lien direct) | >In the last 20 years, information technology (IT) and operational technology (OT) have significantly converged. As technology has become more... The post OT Cybersecurity for IT Professionals: 5 Things OT Wants IT to Know first appeared on Dragos. | |||
|
2022-07-14 13:00:00 | The Trojan Horse Malware & Password “Cracking” Ecosystem Targeting Industrial Operators (lien direct) | >The internet brings endless possibilities for scammers and cyber criminals to make money illegitimately. The usual suspects – ransomware, business... The post The Trojan Horse Malware & Password “Cracking” Ecosystem Targeting Industrial Operators first appeared on Dragos. | Malware | ||
|
2022-07-12 17:06:14 | 10 Questions to Ask Suppliers as Part of Third-Party Security Reviews (lien direct) | >Supply chain attacks are inevitable. History has shown that at some point in time an adversary will compromise a supplier.... The post 10 Questions to Ask Suppliers as Part of Third-Party Security Reviews first appeared on Dragos. | |||
|
2022-06-16 15:40:04 | How Incident Response (IR) Tabletop Exercises Strengthen OT Security Posture (lien direct) | >Gamification is an amazing teaching and learning tool. To make learning a game engages audiences and reaches different learning and... The post How Incident Response (IR) Tabletop Exercises Strengthen OT Security Posture first appeared on Dragos. | |||
|
2022-06-14 12:00:00 | Delivering Secure, Future-Ready Digital Transformation with Dragos and ServiceNow Integration (lien direct) | >Manufacturing companies such as those in the food & beverage, pharmaceutical, and chemical industries are taking steps to future-proof their... The post Delivering Secure, Future-Ready Digital Transformation with Dragos and ServiceNow Integration first appeared on Dragos. | |||
|
2022-06-10 13:00:00 | Minimizing the Consequences of Shared Credentials Across IT and OT Environments (lien direct) | >Dragos recently published its' Dragos 2021 Year In Review report, highlighting four key findings within the Operational Technology (OT) landscape.... The post Minimizing the Consequences of Shared Credentials Across IT and OT Environments first appeared on Dragos. | |||
|
2022-06-09 12:00:00 | Enabling a Blended IT/OT SOC with Dragos\'s Splunk OT Add-On (lien direct) | >As industrial organizations in electric utilities, oil & gas, manufacturing, and other sectors continue towards digital transformation by expanding network... The post Enabling a Blended IT/OT SOC with Dragos's Splunk OT Add-On first appeared on Dragos. | |||
|
2022-06-07 09:30:00 | Dragos OT-CERT Providing Industrial Cybersecurity Resources for the OT Community (lien direct) | >Introducing Dragos OT-CERT ICS/OT environments and their cybersecurity risks are often not as well understood by organizations as IT environments,... The post Dragos OT-CERT Providing Industrial Cybersecurity Resources for the OT Community first appeared on Dragos. | |||
|
2022-05-31 14:28:41 | End of Life of an Indicator of Compromise (IOC) (lien direct) | >Security analysts consistently get asked if there is a concern about an indicator of compromise (IOC) from a report months... The post End of Life of an Indicator of Compromise (IOC) first appeared on Dragos. | |||
|
2022-05-24 21:25:54 | Managing External Connections to Your Operational Technology (OT) Environment (lien direct) | >Dragos recently published the Dragos 2021 Year In Review report, which highlighted four key findings within the operational technology (OT)... The post Managing External Connections to Your Operational Technology (OT) Environment first appeared on Dragos. | |||
|
2022-05-20 21:13:23 | How to Build a Roadmap for ICS/OT Cybersecurity: 3 Steps to a Sustainable Program (lien direct) | >Gartner estimates that by 2023, 75% of organizations will restructure risk and security governance to address converged IT, OT, Internet... The post How to Build a Roadmap for ICS/OT Cybersecurity: 3 Steps to a Sustainable Program first appeared on Dragos. | |||
|
2022-05-18 14:49:22 | Improving ICS/OT Security Perimeters with Network Segmentation (lien direct) | >The 2021 Dragos Year in Review (YIR) notes that 77% of Dragos services engagements performed that year involve issues with... The post Improving ICS/OT Security Perimeters with Network Segmentation first appeared on Dragos. | |||
|
2022-05-09 18:36:53 | How to Improve OT Network Visibility (lien direct) | The Dragos 2021 Year In Review highlighted four key findings on: OT network visibility, poor security perimeters, external connections to... The post How to Improve OT Network Visibility first appeared on Dragos. | ★★★★ | ||
|
2022-05-03 22:16:43 | Dragos ICS/OT Ransomware Analysis: Q1 2022 (lien direct) | In the fourth quarter of 2021, Dragos assessed with high confidence that ransomware would continue to disrupt OT operations into... The post Dragos ICS/OT Ransomware Analysis: Q1 2022 first appeared on Dragos. | Ransomware | ||
|
2022-04-28 21:04:33 | Responding to CHERNOVITE\'s PIPEDREAM with Dragos Global Services (lien direct) | PIPEDREAM is the seventh known ICS-specific malware. Developed by the Threat Group that Dragos has designated CHERNOVITE, PIPEDREAM malware can... The post Responding to CHERNOVITE's PIPEDREAM with Dragos Global Services first appeared on Dragos. | Malware Threat | ||
|
2022-04-28 21:01:29 | Detecting CHERNOVITE\'s PIPEDREAM with the Dragos Platform (lien direct) | This blog post provides Dragos Platform customers with summary guidance for how to leverage the Platform to quickly identify and mitigate risk from PIPEDREAM. A more detailed version and instructions about the new dashboard is available in the Dragos customer portal. The post Detecting CHERNOVITE's PIPEDREAM with the Dragos Platform first appeared on Dragos. | |||
|
2022-04-19 22:35:12 | Software in the Supply Chain: The Newest Insider Threat to ICS Networks (lien direct) | The media focuses most of its attention on information security threats that originate outside of an organization. Whether it is... The post Software in the Supply Chain: The Newest Insider Threat to ICS Networks first appeared on Dragos. | Threat | ||
|
2022-04-15 23:12:14 | New Knowledge Pack Released (KP-2022-004) (lien direct) | This Knowledge Pack includes a group of detections focused on the CHERNOVITE activity group, recently announced by Dragos, and PIPEDREAM... The post New Knowledge Pack Released (KP-2022-004) first appeared on Dragos. | |||
|
2022-04-13 18:24:15 | CHERNOVITE\'s PIPEDREAM Malware Targeting Industrial Control Systems (ICS) (lien direct) | PIPEDREAM is the seventh known industrial control system (ICS)-specific malware. The CHERNOVITE Activity Group (AG) developed PIPEDREAM. PIPEDREAM is a... The post CHERNOVITE's PIPEDREAM Malware Targeting Industrial Control Systems (ICS) first appeared on Dragos. | Malware | ||
|
2022-04-07 11:00:00 | Upskill ICS/OT Cybersecurity in an IT world with Splunk\'s BOTS Virtual Challenge (lien direct) | Dragos and Splunk have released the latest Boss of the SOC (BOTS), “1UP Your ICS/OT Cybersecurity Team,” a virtual industrial... The post Upskill ICS/OT Cybersecurity in an IT world with Splunk's BOTS Virtual Challenge first appeared on Dragos. | |||
|
2022-04-05 07:10:00 | Assessing Threats to European Industrial Infrastructure (lien direct) | Europe's Industrial Infrastructure cyber landscape faces distinctive threats, both from Dragos-tracked Activity Groups and cyber criminals. The high interdependence yet... The post Assessing Threats to European Industrial Infrastructure first appeared on Dragos. | |||
|
2022-04-01 13:00:00 | What Can Be Done Immediately to Improve Your OT Security Posture (lien direct) | Recently, the White House issued a statement by President Biden urging the critical infrastructure community to immediately strengthen their defenses... The post What Can Be Done Immediately to Improve Your OT Security Posture first appeared on Dragos. | |||
|
2022-03-31 15:00:00 | How the 2022 National Defense Authorization Act (NDAA) Impacts ICS/OT Cybersecurity (lien direct) | Last week, Dragos held its first webinar in the Dragos Federal Webinar Series. Our Federal webinar series focuses on several... The post How the 2022 National Defense Authorization Act (NDAA) Impacts ICS/OT Cybersecurity first appeared on Dragos. | |||
|
2022-03-30 18:58:33 | Best Practices in OT Vulnerability Management: OT Vulnerability Prioritization is Different (lien direct) | Whether an organization is managing vulnerabilities within IT or OT systems, prioritization stands as a huge factor for impactfully reducing... The post Best Practices in OT Vulnerability Management: OT Vulnerability Prioritization is Different first appeared on Dragos. | Vulnerability | ||
|
2022-03-28 19:04:54 | Preventing Initial Access in Industrial Environments (lien direct) | The industrial threat landscape continues to evolve with a perpetual influx of new network anomalies and Indicators of Compromise (IOC).... The post Preventing Initial Access in Industrial Environments first appeared on Dragos. | Threat | ||
|
2022-03-16 17:00:00 | Dragos Contributes to NIST Guide to Manufacturing Cybersecurity (lien direct) | As manufacturers increasingly turn to industrial control systems (ICS) and digital ecosystems to reap the benefits of Manufacturing 4.0, the... The post Dragos Contributes to NIST Guide to Manufacturing Cybersecurity first appeared on Dragos. | ★★★★★ | ||
|
2022-03-16 15:30:23 | Suspected Conti Ransomware Activity in the Auto Manufacturing Sector (lien direct) | Dragos has observed consistent network communication between Emotet Command and Control (C2) servers and numerous auto manufacturing companies. These Emotet... The post Suspected Conti Ransomware Activity in the Auto Manufacturing Sector first appeared on Dragos. | Ransomware |
To see everything:
Our RSS (filtrered)
