Are Your ICS Security Patching Plans Realistic?
An interesting and potentially important technical paper was published near the year end holidays and didn’t get the attention it deserved: Vulnerability Forecasting: In Theory and Practice by Éireann Leverett, Matilda Rhode and Adam Wedgbury of...Podcast: Is The Normalized, Taxonomized Approach In A SIEM Doomed To Fail?
An Interview with Corey Thuen of Gravwell. Dale and Corey discuss the value of a normalized, taxonomized approach to SIEM, which Dr. Anton Chuvakin has famously claimed is doom to fail. Corey is sympathetic to this view and tries to explain it to Dale. The alternative...
How To Be An OT Visionary
It really is quite simple to be an OT Visionary. Look at what is happening and working in IT / the enterprisePredict that this same technology and approach will be used in OTBe prepared to be called crazy and told it will never work in OT / ICSFive years later have it...
ICS Breaches Will Happen
Focus on Recovery and Resilience in 2021 We, the ICS security community and asset owners, need to grow up in 2021. There is near hysteria whenever there is an actual, potential or mythical breach of an ICS, regardless of the impact. And this is in an environment where...Podcast: December Month In Review
Eric Byres, CEO of aDolus and of Tofino fame, and I discuss the top three stories from December 2020 and give a Win, Fail and Prediction. https://traffic.libsyn.com/secure/unsolicitedresponse/21-1_December.mp3 Topics: The Solarwinds hackDragos raising $110M in venture...
2020 Predictions – Right, Wrong & Pending
I made a number of predictions in 2020, some overlapping, in both my coverage of the detection market and as a feature of the monthly ICS security month in review episodes of the Unsolicited Response podcast. The predictions help with my analysis and hopefully...
Good News: 2020 Cyber Attacks On ICS Led To Very Small Consequences
Want something to feel good about as 2020 draws to a close? The impact of cyber attacks on ICS again this year, and every year since 2001, was very small. Extremely small. This includes financial impact, service impact, safety impact, environmental impact and any...
ICS Detection Product Integration with SIEM and Asset Management Solutions
At S4x19, a detection vendor had one of their customers on the Sponsor Stage to sing the praises of the product. In a moment of candor, the asset owner said the detection vendor’s product was fantastic … but they never looked at their management system...