Blogs

A lovely thought to take into the weekend with you....not.

Maybe this should be a candidate for Letterman's "stupid people tricks" but in fact, it is not only true, but very sad. Over on Joe Weiss' blog Unfettered, he posted yesterday about home thermostats that are designed and mandated by law in California to be communicating over the Internet to...

Cross posted from Unfettered...

I just posted on Unfettered a discussion about a new whitepaper Symantec released today through CIO magazine. The URL is in that post. To my mind, the whitepaper is a classic illustration of what the difference is between the skillsets, training and mindset of enterprise IT security and plant IT...

Jake Brodsky on public disclosure...

From the SCADA list, with permission:  We have been beating around the discussion of public disclosure for some time.  I've made this point on other occasions and I'm going to reiterate it here.  I recognize that there are vulnerabilities we do not wish to disclose to the public at large. ...

From Brian Mast...a clear non-cyber power attack on Cal-ISO

Unix admin tried to axe power grid Lonnie Denison pleaded guilty to charges that he shut down the datacenter responsible for managing the state of California's energy grid By Robert McMillan, IDG News Service December 14, 2007 A California man pleaded guilty Friday to charges that he shut down the...

Listen up, CEOs! Cybersecurity isn't just on the plant floor...

I received this very timely press release from the British North American Committee (BNAC) and the Atlantic Council of the United States (ASUS):   Note that one of the report's main authors is Paul Twomey from ICANN... CEOS AND DIRECTORS NEED TO TACKLE CYBER SECURITY THREATS

Industrial Defender and US Pat. No. 7,246,156

As the industry is still reeling from the onslaught of patent trolls over the past few years, when Industrial Defender (who most of us are still having trouble not calling "Verano" or even HP RTAP) revealed that they had been awarded a significant cybersecurity patent, the immediate reaction of most...

Does SANS bite?

Sorry, I couldn't resist the pun. Joe Weiss posted on Unfettered this morning a clip from the blog, SANS Bites. In it he takes issue with the editor of SANS Bites' self-serving, and industry-serving statements about how nobly the industry is trying to achieve cybersecurity nirvana. What rot.

About security...a word from a "recovering IT person."

Last week I posted on the SCADA list a response to an IT person who took exception to my statement that IT people who try to do security in process control systems can even be dangerous. In part, I said: You are dead wrong about one thing, though.

Control systems ARE different...yes they are!

  Joe Weiss posted a great discussion of how and why they are different, and why control engineers are different and have different training and skills at Unfettered. Once again, it becomes clear that control systems, whether they are machine controllers, cell control systems, single loop control systems, DCS systems...

Is this why the Government has its hair up about Trojans??

From Bob Landman, via the SCADA list: Hackers Launch Major Attack on US Military LabsHackers have succeeded in breaking into the computer systems of two of the U.S.' most important science labs, the Oak Ridge National Laboratory and Los Alamos National Laboratory. John E.