Unfettered Blog

NIST Released New Draft Outline of Cyber Standard #pauto #critical-Infrastructure #automation #cybersecurity #hacking

NIST Releases Draft Outline of Cybersecurity Framework for Critical Infrastructure

Counterfeit exida safety certifications discovered

SELLERSVILLE, PA (May 9, 2013) --exida, an accredited global Certification Body, has discovered a counterfeit certificate falsely claiming that a product meets the functional safety requirements for Safety Integrity Level (SIL) 3 capable per IEC 61508.

Security Inside! #pauto #cybersecurity @Siemens @Belden @exida #ISASecure

Siemens, still smarting from the targeted nation-state attack called Stuxnet that used Step 7 and PCS7 as vehicles, has gone to great pains to point out that their new controller offering, the S7-1500, has integrated security functions built into the firmware of the controller.

The Myth of Rip and Replace in SCADA and Industrial Control Systems #cybersecurity #pauto #SCADA @tofino @digitalbond

Recently, Eugene Kaspersky made headlines about designing an operating system for industrial control systems. It doesn't seem to have gone anywhere, as you might expect.

@Belden @Tofino tested by @DigitalBond: It works!

Recently, several ICS end users in the Middle East and Asia have been exposed to attacks directly on the control systems through firewalls that have been misconfigured, or not configured correctly, for Modbus and OPC data.

Control Exclusive: Stuxnet, the view from Iran #pauto #cyber #stuxnet

Posted for Joe Weiss:

Control Exclusive: Stuxnet, the view from Iran #cybersecurity, #stuxnet #pauto #Iran

We will be publishing in the next few days a fascinating paper we received this month from an Iranian automation engineer, Morteza Rezaei about the Stuxnet virus, from the Iranian perspective.

An Unsecure Plant is Not a Safe Plant #abbpaworld #redtigersecurity #cybersecurity #abb #pauto

@ABBAPWorld: An Unsecure Plant is Not a Safe Plant: Hacking SCADA Systems

The RISI Cyber Incident Report for the 2011 calendar year is out! @RISI #cybersecurity #pauto #automation #mfg #manufacturing

The annual report of the Repository for Industrial Security Incidents (RISI) has been released by the not-for-profit Security Incidents Organization, which produces the report annually. Here's the press release from John Cusimano at SIO:

Byres on defense in depth #pauto #cybersecurity #automation

Eric Byres talks about Sun Tsu, the Maginot Line, Blitzkrieg and defense in depth for industrial control security.