Submitted by waltboyes on Tue, 05/12/2009 - 10:01
Hackers penetrated the University of California, Berkeley student and alumni database, stealing the records of 160,000 individuals. The incident is the latest in a string of incidents that has some security experts calling for greater efforts in protecting data and critical networks.
Submitted by Joe Weiss on Mon, 09/29/2008 - 09:57
Potpourri blog September 22-26
Submitted by Joe Weiss on Wed, 02/27/2008 - 09:14
Yesterday, SANS held a Webcast on “A Practical Approach to Cyber Security within Control System Environments”. The participants included representatives from SANS, Sandia, SRI, MIT Lincoln Labs, and ArcSight. There were several slides of interest as well as the basis for the entire presentation that need to be addresse...
Submitted by Joe Weiss on Tue, 01/22/2008 - 11:04
Dale Peterson's website has a very interesting and provocative discussion about the CIA disclosure at SANS last week. This is the second time SANS has made an unverifiable disclosure on control system cyber extortion. SANS needs to provide more detailed information not only to validate its authenticity but to provide...
Submitted by Joe Weiss on Wed, 12/12/2007 - 08:50
The following is from SANS Bites 12.11.2007 with my comments boldfaced : [Editor's Note (Paller): This is a stunning development. NERC's cyber security standards were coming to be seen as almost totally ineffective (That statement is wrong- the industry has been fighting tooth and nail to justify and keep the...
Submitted by Joe Weiss on Sat, 12/08/2007 - 17:54
Control systems are different Control systems control the industrial infrastructure. Control system engineers are system engineers. Consequently they are conversant in control theory, electrical engineering, mechanical engineering, chemistry, physics, computer programming, and for nuclear plants, nuclear engineering.
Submitted by Joe Weiss on Tue, 10/23/2007 - 11:22
The October 17 Congressional hearings generated a great deal of interest and also consternation, particularly by NERC, EEI, and the utilities. There is ample evidence that many utilities have not been making much progress in actually securing their control systems or responding to the recent ES ISAC Advisory on the...