720-891-1663

Do You Think Your Drinking Water is Safe from Cyberattacks?

We have seen multiple attacks in the last few years on municipal water supplies. The good news is that none of them killed anyone. Mostly, that was just because we were lucky. A bug in a TLS certificate (used to implement HTTPS) allowed researchers to view the water system control panel in hundreds of public […]

Continue reading → [DISPLAY_ACURAX_ICONS]

US Says Russia Exploiting Weak Security at Water, Wastewater Plants

Shoddy security practices. Short of cash. Lack of personnel to deal with threats. Outdated equipment connected to the Internet. Weak passwords. CISA and the FBI say these are just some of the issues that critical infrastructure operators are facing. Anti U.S. (pro-Russian) hackers are intensifying attacks on critical infrastructure such as water, wastewater, dams, energy […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Cyberattacks Causing Physical Disruption on the Rise

At least 68 cyberattacks last year caused physical consequences to operational technology (OT) networks at more than 500 locations worldwide. Damage from these attacks ranged up to $100 millon. OT attacks are attacks on the systems that run businesses like manufacturing, transportation and the cities themselves. If you think about all of the computers that […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Feds Say CISA Not Prepared to Defend OT

If that headline doesn’t keep you up at night, I don’t know what will. The Government Accountability Office (GAO) says they have have found inefficiencies in CISA’s information sharing practices, in particular with critical infrastructure stakeholders. They also say that CISA is understaffed for handling OT incidents. Just to make sure everyone is on the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

UK Updates Post-Quantum Crypto Guidance

I have written several times about the need to start thinking about post-quantum crypto. At this point, “Q-Day” is somewhere between this year and ten years from now. If you believe my blog last week, Q-Day could be today. NIST has published draft post quantum standards, but there is a lot more to do besides […]

Continue reading → [DISPLAY_ACURAX_ICONS]