


Andrea Carcano
Co-founder and CPOfeature_status*/ ?>
Nozomi Networks
Comments Dotted :
21
November 13, 2020
The single biggest threat to enterprises today is underestimating and failing to address cybersecurity across all of their cyber and physical systems.
The single biggest threat to enterprises today is underestimating and failing to address cybersecurity across all of their cyber and physical systems. Ransomware attackers are going after higher value targets and that includes operational networks. And remediation costs and efforts to repair the operational, financial and reputational damage caused by these attacks put a significant strain on leadership teams.
For manufacturing, time is money, and the current pandemic has only added to the.....Read More

November 13, 2020
Ransomware attackers are going after higher value targets, and that includes operational networks.
The single biggest threat to enterprises today is underestimating and failing to address cybersecurity across all of their cyber and physical systems. Ransomware attackers are going after higher value targets, and that includes operational networks. In addition, remediation costs and efforts to repair the operational, financial and reputational damage caused by these attacks put a significant strain on leadership teams.
For manufacturing, time is money, and the current pandemic has only.....Read More

October 26, 2020
The perfect storm of increasing cyber threats, digital transformation and IT/OT convergence means organisations must move swiftly.
When Nozomi Networks analysed the TRITON malware in 2018, our findings led us to believe that while TRITON failed, the attacker(s) could have just as easily succeeded in injecting the final payload. This realisation, combined with the knowledge that a growing number of nation-state adversaries and other hackers have critical infrastructure in their sights, calls for vigorous defense of our national critical infrastructure.
No single entity can solve this global issue; rather, end users,.....Read More

October 14, 2020
By proactively getting in front of Necurs, Microsoft was able to significantly disrupt the botnet.
This isn’t the first time that Microsoft has leveraging trademark laws to chase down botnets operators. They used the tactic back in 2011 to take down Rustock. IoT botnets are among the fastest-growing categories of attacks, and Trickbot alone has impacted millions of computers. While botnet operators are using every trick in the book to expand their malicious activity, defenders, for obvious reasons, have to comply with the law when implementing the countermeasures. But as Microsoft’s.....Read More

October 12, 2020
Ensure all devices and services are patched.
The remote access genie is out of the bottle and the longer it’s on the loose, the harder it’s going to be to put it back in. While many employees like their new-found flexibility, it’s created operational technology (OT) system security headaches for chief information security officers CISOs. COVID-19 has forced organisations to rethink traditional work environments, and many employees are loving it. No more long commutes or missing work to look after sick family members, and they can.....Read More

October 09, 2020
The reality is remote access is here to stay.
What stands out to me in this important, timely survey is that almost half of the cybersecurity decision-maker respondents, forty-three percent, expressed ‘moderate to unlikely means to discover, identify and respond to unknown, unmanaged, or insecure devices accessing network and cloud resources’.
The reality is remote access is here to stay - it was a trend that was growing prior to COVID and with the pandemic, the trend has escalated. Security programs can adjust to support this new.....Read More

September 16, 2020
Make people aware of the threat of phishing attacks by training them to recognise suspicious messages.
Transportation organisations are rapidly evolving to improve their service levels and efficiency. As the same time, safety has never been more important, as risks from cyber threats increase. Indeed, the World Economic Forum cites cyberattacks on critical infrastructure, including transportation, as the world’s fifth highest risk in 2020. The maritime industry in particular transports 90% of the world’s trade, and like other industries, is becoming increasingly connected, automated and.....Read More

September 09, 2020
Fortunately in this case it appears K-Electric’s operational networks were not impacted.
The attack against K-Electric once again highlights a concerning trend we continue to see. Ransomware attackers are demanding higher ransoms, aimed at larger and more critical organisations, and they are now often using a two-pronged approach that combines data encryption with data theft, making it difficult for the victim to avoid paying up. Fortunately in this case it appears K-Electric’s operational networks were not impacted.
When it comes to ransomware, prevention is always better.....Read More

September 03, 2020
It’s a board issue and an employee issue.
As critical infrastructure organisations converge their IT, OT, IoT and physical systems to improve overall performance, security cannot be an afterthought and state and federal law makers are increasingly taking action to hold corporate executives responsible. In January California was the first state to enact an IoT security law requires all “connected devices” sold in the state to have reasonable security measures. At the federal level, a proposed Corporate Executive Accountability Act.....Read More

August 31, 2020
As a result, when it comes to ransomware prevention will always be better than a cure.
Ransomware attackers are demanding higher ransoms, aimed at larger and more critical organizations, echoing a trend we identified in a recent study of common threats. The proliferation and complexity of ransomware attacks signifies the growing need for organizations to take the necessary steps to secure their systems. It is never advisable to pay the ransom, and organizations that give in to the hackers’ demands are only fueling the profitability of the ransomware industry for attackers. As a .....Read More
