Volt Typhoon Is New Status Quo For ICS

Volt Typhoon Is New Status Quo For ICS

Note: this article was triggered by a Dragos report and briefing Tuesday on Volt Typhoon (they call it VOLTZITE) and its potential future impact on cyber/physical systems. The real message, the key takeaway on Volt Typhoon for those running critical infrastructure ICS...

read more
SEC Fines, Software Liability & Possible Consequences

SEC Fines, Software Liability & Possible Consequences

Actions have consequences, intentional and unintentional. Last year the SEC provided specific cybersecurity disclosure rules. the Commission adopted final rules that will require public companies to disclose both material cybersecurity incidents they experience...

read more
Support Vendor Laptops Continue To Be A Challenge

Support Vendor Laptops Continue To Be A Challenge

Most asset owners who have been working on OT security for 5+ years have dealt with the removable media risk. My preference is USB drives and other media dedicated to the OT environment; never used on another network. All needed software / firmware is brought through...

read more
OT Security Unicorns

OT Security Unicorns

Aileen Lee coined the term Unicorn ten years ago.  Unicorn: a  VC-backed startup that has grown to be worth $1B+ within ten years. Aileen, now the Founder & Managing Partner of Cowboy Ventures, recently wrote the worth reading article Welcome...

read more
US Government: Guidance, Regulation, or Services?

US Government: Guidance, Regulation, or Services?

There has been a deluge of guidance and services, and a growing desire to regulate, coming from the US Government in the last two years. A portion of that has been aimed at OT and ICS security. CISA has led the way in volume since Jen Easterly became Director. The...

read more

Advancing ICS Security Worthy Causes

We have two ways at S4x24 to raise awareness and advance worthy causes in OT & ICS Cybersecurity. There are 1,100 early adopters / influencers / people who drive change at S4x24. Grab their attention and jumpstart your worthy cause. Worthy Cause Exhibits We have...

read more
How To Measure CISA’s Performance?

How To Measure CISA’s Performance?

Let's set aside the important question of whether the US Government's OT cybersecurity and risk management program, led by CISA, is wise. Instead let's focus on CISA's own metrics on CISA's strategy and programs. CISA issued a Strategic Plan for FY2023 - 2025 in...

read more

GET DALE'S ICS SECURITY NEWS & NOTES EMAIL EVERY FRIDAY

UPCOMING EVENTS

S4x24 ... 4 - 7 March 2024 in Miami South Beach

Save the date. For the biggest and most future focused on ICS Security Event.