“Who’s Really Attacking Your ICS Equipment?” whitepaper released by TrendMicro

Posted on March 21, 2013 by Jacob Kitchel

TrendMicro released a whitepaper by researcher Kyle Wilhoit, who also presented the “Who’s Really Attacking Your ICS Equipment?” research at the Black Hat EU 2013 conference in Amsterdam. The research presented Wilhoit’s observations of attacks on an Internet-facing honeypots set up to detect who and/or what is attacking ICS/SCADA devices that are on the Internet. Wilhoit’s honeypots, a mix of high and low-interaction honeypots, were designed to mimic the setup of a water pressure stat << More >>

Black Hat Report from the Field Day Two:

Posted on July 27, 2012 by Jacob Kitchel

Industrial Defender’s Jacob Kitchel is on the ground attending Black Hat 2012. From the Las Vegas heat he’s interpreting sessions and research that related to automation system and industrial control system operations. BH Session: Spanish Security Researcher has a Nose for Backdoors Talk Title: Here Be Backdoors: A Journey into the Secretes of Industrial Firmware As truffle hunters across Europe use pigs to sniff out truffles, Spanish Security Researcher Ruben Santamarta uses his skills to << More >>

What to do about Flame malware

Posted on May 30, 2012 by Jacob Kitchel

The biggest cyber security related news story this week has been about the Flame/Wiper malware. The event has gotten high profile coverage by several media outlets (included below). So far, there have been no strong indicators that the Flame virus is tied to anything ICS or SCADA related. There has been plenty of speculation in the media coverage that Flame does target ICS environments based on its apparent sophistication and the countries in which infected machines were detected. After reading << More >>

Stuxnet for the rest of us

Posted on March 6, 2012 by Jacob Kitchel

On March 4, CBS’ 60 Minutes did a story solely focused on Stuxnet. We are 3 months short of the 2 year anniversary (June 2010) of Stuxnet’s discovery. In computer security timelines, Stuxnet is ancient history. So, why is it a big deal that 60 Minutes covered Stuxnet? This is a big deal because there is in-depth, main-stream media coverage. Before, Stuxnet wasn’t “real” for millions of viewers. Now your family, parents, and grandparents are informed enough to ask questions and all of t << More >>

Western Regional Collegiate Cyber Defense Competition

Posted on March 26, 2010 by Jacob Kitchel

The Western Regional Collegiate Cyber Defense Competition is a regional event of the Collegiate Cyber Defense Competition which takes place in Pomona, CA at Cal Poly Pomona. In the CCDC, student teams (Blue Team) are asked to administrate and protect a business network while meeting business requirements all while being attacked by an attacking team (Red Team). Continue reading → << More >>

Advanced Persistent Threats

Posted on January 30, 2010 by Andrew Ginter

Mandiant has just released a report on Advanced Persistent Threats. This was the organization providing the keynote address at the recent Digital Bond S4 conference. The paper can be requested at: http://www.mandiant.com/products/services/m-trends The contents of the report are disturbing. Mandiant documents cases where a patient and very capable adversary has infiltrated many different organizations. In one case, only 10 systems out of 50,000 were taken over, and in one of those systems, the m << More >>

M	T	W	T	F	S	S
« Apr
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

ICS Perspectives

Tag Archives: cyber terrorism