Act Now on Critical Microsoft SMB Vulnerability (CVE-2020-0796)

Act Now on Critical Microsoft SMB Vulnerability (CVE-2020-0796)

On March 10th, Microsoft published a security advisory of critical severity for CVE-2020-0796, which is a remote code execution vulnerability affecting the Microsoft Server Message Block 3.1.1 (SMBv3). The post Act Now ...
Recent Ransomware Threatens OT Security, Reputation and GDPR Fines

Recent Ransomware Threatens OT Security, Reputation and GDPR Fines

Last week we reported that a new wave of ransomware is threatening OT security. The Snake file encrypting ransomware, for example, includes code that has the explicit goal of causing process disruption ...
New Wave of Ransomware Threatens OT Security and Reliability

New Wave of Ransomware Threatens OT Security and Reliability

| | All, Blog, Labs Blogs
The post New Wave of Ransomware Threatens OT Security and Reliability appeared first on Nozomi Networks ...
Urgent-11-BLOG

URGENT/11 – New ICS Threat Signatures by Nozomi Networks Labs

A well-known RTOS (Real-Time Operating System), widely used in industrial sectors, is at risk from a series of 11 vulnerabilities dubbed URGENT/11. Nozomi Networks Labs conducted research on the vulnerable devices and ...
EXP_blog-26-switch-advisory

New Switch Vulnerability Discovered by Nozomi Networks Labs

On August 13, 2019, the Siemens CERT Team issued an advisory (SSA-100232) concerning Siemens SCALANCE switch devices. This vulnerability was responsibly disclosed to Siemens CERT Team and CISA by Nozomi Networks Labs ...
EXP_blog-25-Storm

An ICS Cyber Security Storm is Brewing: How to Prevent Staff Burnout

Building cyber resiliency puts a lot of pressure on an organization’s security team. It requires specialized knowledge that takes time to develop, and there just aren’t enough skilled cyber experts to go ...
Black Hat: The Future of Securing Power Grid Intelligent Devices

Black Hat: The Future of Securing Power Grid Intelligent Devices

Today at Black Hat USA we’re presenting an innovative power grid cyber security solution that greatly improves monitoring of intelligent electronic devices (IEDs). Using the IEC 62351 standard for monitoring industrial networks, ...
What You Need to Know About LookBack Malware & How to Detect It

What You Need to Know About LookBack Malware & How to Detect It

On August 1, security researchers at Proofpoint reported the details of spearphishing campaign targeting three different United States utility companies using a malware called “LookBack.” The spearphishing emails contained a malicious Microsoft ...
Advances-in-Cyber-Security-for-Electric-Utilities-WG15-Black-Hat-BLOG

Advances in Cyber Security for Electric Utilities: WG15 & Black Hat

As a passionate champion for secure-by-design power grid systems, I’ve been part of WG15, the group defining IEC 62351 standards to enable such systems, for years. If you’d like to learn about ...
Nozomi-Networks-Labs-Finds-New-Rockwell-PLC-Vulnerabilities

Nozomi Networks Labs Finds New Rockwell PLC Vulnerability

Today, the U.S. Department of Homeland Security issued ICS CERT Advisory (ICSA-19-120-01) concerning Rockwell Automation CompactLogix controllers. Nozomi Networks responsibly disclosed the vulnerability to CISA and Rockwell Automation. Read on to learn ...