Mapping Industrial Cybersecurity Threats to MITRE ATT&CK for ICS

Mapping Industrial Cybersecurity Threats to MITRE ATT&CK for ICS

MITRE ATT&CK for ICS is a community-sourced framework for identifying malicious threat behaviors, specifically the tactics and techniques of the adversaries, in industrial control systems (ICS). When industrial cybersecurity defenders and tools map their detection...
Bridging the IT and OT Cybersecurity Divide

Bridging the IT and OT Cybersecurity Divide

Industrial organizations and modern enterprises are grappling with a two-sided cybersecurity problem. They must adopt a mature security posture in both their information technology (IT) and operational technology (OT) environments at a time when both are coming under...
Spyware Stealer Locker Wiper: LockerGoga Revisited

Spyware Stealer Locker Wiper: LockerGoga Revisited

LockerGoga ransomware severely impacted the Norwegian metals giant, Norsk Hydro, and provides a blueprint for malicious entities to weaponize ransomware variants for disruptive purposes. Ransomware has lived in various forms as a threat to computer operations for...
Dragos 2019 ICS Year in Review: ICS Vulnerabilities

Dragos 2019 ICS Year in Review: ICS Vulnerabilities

This report assesses 438 ICS vulnerabilities reported by a variety of sources–including independent researchers, vendors, and ICS-CERT–and provides a comprehensive look at ICS vulnerability statistics, including their accuracy rates, how they affect...