Control Systems Cybersecurity Expert, Joseph M. Weiss, is an international authority on cybersecurity, control systems and system security. Weiss weighs in on cybersecurity, science and technology, security emerging threats and more.
The GE Fanuc/Proficy Information Portal Remote Code Execution Vulnerability has been identified via US CERT Vulnerability Note VU#339345 and issued November 7th as a NERC ES-ISAC Advisory: “…The NERC ES-ISAC estimates that the risk to grid reliability from this vulnerability is LOW based on the limited deployment of the...
I wanted to address an issue that causes great confusion – what is cyber? Cyber is not just a 12-year pimply-faced hacker sitting in front of a computer drinking Dr. Pepper and writing malware. Moreover, cyber does not have to be an intentional attack.
This past week was ISA Expo in Houston. As this was the first time in many years I did not attend, I went to Dale Peterson’s blog for his thoughts. He mentioned there was very little Linux on the show room floor. This is not surprising to me.
The SCADASec listserver had a rough and tumble week. In my opinion, the original intent of the listserver was to provide a vehicle for the SCADA (control systems) community to discuss control system security issues.
The CIPAG Metrics Workgroup for Water was convened by the Water Sector Coordinating Council and Government Coordinating Council to develop a national performance measurement system for the water sector. Consequently, they issued “Recommendations of the CIPAC Metrics Work Group for Water” dated June 2008. It is an extremely disappointing document.