Critical Infrastructure

Experts discuss critical infrastructure and the future of the threat landscape

By

Two Trend Micro experts sit with us to discuss research they've conducted concerning critical infrastructure and the future of the threat landscape.

DHS notes rise in brute-force attacks against natural gas companies

DHS notes rise in brute-force attacks against natural gas companies

By

Though no attacks were successful, ICS-CERT said the incidents show a glaring need for operators to remain vigilant in monitoring and thwarting network intrusions.

Critical vulnerablilty discovered in industrial control product

Critical vulnerablilty discovered in industrial control product

By

The vulnerability was found in two programmable gateway devices often used by auto, food and manufacturing businesses in the United States. Meanwhile, a new study shows attacks against utility companies are growing.

Executive order, NIST initiatives may help electric providers get ahead of the threat

Executive order, NIST initiatives may help electric providers get ahead of the threat

While a major attack has yet to take place on the U.S. energy sector, now is the right time for these critical infrastructure providers to ready their defenses.

Going digital poses a challenge for critical infrastructure operators

By

Not only are there new security concerns, but leaders must ensure disparate groups of workers can adequately collaborate.

Spear phishing campaign targeted energy sector

By

The unsuccessful attacks were the result of email addresses being publicly posted on an electric company's website.

Experiment shows how often hackers want to attack critical infrastructure

Experiment shows how often hackers want to attack critical infrastructure

By

Honeypots installed by researchers at security firm Trend Micro provided bait for 39 attacks on simulated ICS environments over the course of a month.

Waking the sleeping giant: Critical infrastructure

Waking the sleeping giant: Critical infrastructure

By

For the last several years, security experts have been stressing the vulnerability of industrial control systems. Now, with attacks like Stuxnet proof of the risk, the big question is: How will industry respond?

Natural gas giant RasGas targeted in cyber attack

By

A virus has reportedly shut down the energy company's website and email servers, giving rise to questions of whether the Shamoon virus is to blame.

Saudi oil company back online after cyber sabotage attempt

By

Oil company Saudi Aramco has yet to confirm whether a virus, which struck 30,000 of its workstations, is Shamoon -- malware said to be targeting the Middle East energy sector.

Data-wiping Shamoon targeting Middle East energy sector

By

Shamoon, malware that overwrites files to the point of making computers unusable, has been described as a targeted, yet damaging threat.

New partnerships required

New partnerships required

Only through collaboration can government and the private sector thwart cyber attacks, says Raymond Choo.

Data sharing, standards pose challenges to power grid

By

Better coordination, actionable information, and risk awareness are needed to protect the country's critical infrastructure, especially the power grid, according a congressional watchdog report.

Is the nation ready to protect critical infrastructure?

Is the nation ready to protect critical infrastructure?

Whether it is defending against cyber terrorism, cyber warfare, or malicious hackers, it seems clear that securing our countries critical infrastructure must be a nationwide priority.

Natural gas pipeline companies under siege, DHS arm warns

By

A sustained attack against the nation's natural gas pipelines, apparently orchestrated by the same malicious party, is proving difficult to quell.

Anonymous says power grid concerns are U.S. gov't spin

By

The head of the National Security Agency is warning that Anonymous may be developing capabilities to target the U.S. power grid, but members of the hacktivist collective called such claims nothing more than fear mongering.

New cyber security bill is bipartisan, but has its critics

By

A new version of a federal law designed to protect the nation's critical assets is toned-down from previous cyber security proposals, but business and privacy leaders have concerns.

Some 2M possibly affected by NYSEG, RG&E data compromise

By

Unauthorized individuals gained access to the personal data belonging to customers of New York State Electric & Gas (NYSEG) and Rochester Gas & Electric (RG&E), which are owned by Iberdrola USA.

APTs in critical infrastructure organizations

APTs in critical infrastructure organizations

Many managers of utilities companies don't understand or appreciate the value of IT security...at their, the facilities' and the community's peril.

Energy Department to analyze power grid cyber threats

By

The proposal is helpful, but still doesn't answer the question: who to call when an attack happens.

MIT researchers suggest power grid security oversight

By

While a number of entities have a stake in maintaining the cyber security of the U.S. electric grid, no single organization is currently responsible for overseeing protection across all aspects of grid operations.

Illinois water pump failure not a cyberattack

By

An Illinois water utility pump failure may have been an accident caused by an employee -- not the work of foreign hackers.

Water utilities in Illinois, Houston reportedly hacked

By

Hackers reportedly breached the systems of a company that makes supervisory control and data acquisition (SCADA) systems, used to manage operations at critical infrastructure facilitates, and stole customer usernames and passwords.

U.S. and EU partner for security response exercise

U.S. and EU partner for security response exercise

By

"Cyber Atlantic 2011" aimed to clarify how the two nations can best communicate about cyber incidents that occur on government systems or critical infrastructure.

Microsoft issues workaround for Duqu malware

By

Microsoft issued a temporary fix for a vulnerability in the Windows kernel used to spread Duqu, the so-called "son of Stuxnet" trojan.

"Nitro" attacks target 29 firms in chemical sector

By

Hackers over the summer targeted at least 29 companies in the chemical sector during an attack campaign aimed at stealing intellectual property.

Duqu underscores trouble AV industry has in stopping threats

By

The slowness by which an offspring of Stuxnet was discovered may be further proof that attackers have a significant leg up on the security community.

The government has it wrong on Anonymous and critical infrastructure

By

When it comes to stopping individuals who want to compromise industrial control systems, the Anonymous group is certainly not Enemy No. 1.

Sponsored video: Pan Kamal of AlertEnterprise on SCADA

By

Fresh off the Stuxnet attack, critical infrastructure environments must evolve to meet the growing threat, Pan Kamal, VP of marketing at AlertEnterprise, tells SC Magazine Executive Editor Dan Kaplan.

Researcher again discloses multiple SCADA flaws

By

An Italian analyst said he spent little time finding a new batch of vulnerabilities impacting industrial control systems.

Sign up to our newsletters

POLL