Category: Unfettered

Forecasting where a hacker will go once inside an OT network

Critical Infrastructure, General Topic, Policy, Unfettered 4-November-2023 Joe Weiss

Work is ongoing in identifying cyber threats, and vulnerabilities, and locating hacker penetration in electric utility and other OT networks. However, existing technologies including IDS, IPS, SIEM, and SOAR can’t predict the future movement of a cyber intrusion that has successfully breached the OT network. Under US Air Force and DOE contracts, GCAS and its […]

ISA MLM-38A “Identifying Control System Cyber Incidents” has been issued

General Topic, Policy, Unfettered 19-October-202321-October-2023 Joe Weiss

[UPDATED 21-Oct-2023] ISA99 has approved the peer-reviewed Micro Learning Module (MLM) 38A – “Identifying Control System Cyber Incidents”. Those wishing to see the MLM should send their request to ISA99Chair@gmail.com. It is not possible to have an effective OT/ICS cyber security program if you can’t identify control system incidents as being cyber-related. Yet, OT cyber security is […]

Recent control system cyber cases can impact safe facility operation

Critical Infrastructure, General Topic, Policy, Unfettered 5-October-20235-October-2023 Joe Weiss

IP network hacks and ransomware may not be able to be stopped. That includes cyberattacks against control system vendors who offer “cyber secure systems” and cyber security services. Control system vendors provide systems globally including to China, and some also have design and manufacturing facilities in China. The Johnson Controls and Bently-Nevada cases are not […]

CS2AI podcast on control system cyber security

Critical Infrastructure, General Topic, Unfettered 30-September-202330-September-2023 Joe Weiss

I did a podcast for CS2AI on control system cyber security. The podcast was to educate people that control systems are composed of process sensors, actuators, drives, controllers, HMIs, networks, and network devices because OT cyber security practitioners have limited the discussion to HMIs, OT networks, and OT network devices. The podcast also discussed the […]

Microsoft Australian East Data Center control system cyber incident – unintentional or malicious?

Critical Infrastructure, Electric, Unfettered 14-September-202314-September-2023 Joe Weiss

Data center control system cyber incidents have shut down or damaged data centers operated by many different entities globally. August 30, 2023, a utility voltage sag tripped cooling units at the Microsoft Australia East Azure Data Center. When the voltage sag occurred, all five chillers in operation faulted and didn’t restart because the pumps did […]

Hacking insecure process sensor systems may have affected the Chernobyl nuclear plant site

Critical Infrastructure, Electric, Policy, Unfettered 11-August-2023 Joe Weiss

I am an engineer not a threat analyst. I can tell you what can happen to control systems from cyber vulnerabilities; I cannot tell you why someone would or would not want to exploit these vulnerabilities. My concerns are from a safety perspective as process sensors are used globally to monitor environmental conditions around industrial […]

A Tale of Two Cities water attacks – Oldsmar and Discovery Bay

Critical Infrastructure, General Topic, Policy, Unfettered 31-July-2023 Joe Weiss

There have been more than 130 control system cyber incidents in water/wastewater utilities. Like Oldsmar and Discovery Bay, most of these incidents have occurred in small water utilities. Many of these incidents were not publicly disclosed, nor were the utilities required to disclose these incidents. When the Oldsmar water “hack” was publicized, a water system […]

Differences between IT and control system cyber incidents in maritime

Critical Infrastructure, General Topic, Transportation, Unfettered 19-July-202319-July-2023 Joe Weiss

Researchers at NHL Stenden University of Applied Sciences in the Netherlands have launched the Maritime Cyber Attack Database (MCAD). MCAD includes information on over 160 cyber incidents in the maritime industry. When compared to my database of control system cyber incidents, the MCAD database was missing the cases where control system cyber-related incidents caused physical […]

Critical infrastructures cannot be secured when process sensors are not secure

Critical Infrastructure, Policy, Unfettered 24-June-202324-June-2023 Joe Weiss

If you can’t trust what you measure, there is no cyber security, resiliency, process safety, productivity, or predictive maintenance in any critical infrastructure or cyber-physical system. Process sensors have no cyber security or authentication yet use remote access extensively as documented in the process sensor vendors’ specifications. ISA and NIST have identified there is no cyber […]

Surface transportation is cyber vulnerable and control system issues are not adequately addressed

Critical Infrastructure, Policy, Transportation, Unfettered 6-June-20236-June-2023 Joe Weiss

May 25, 2023, I gave a presentation to the American Public Transportation Association’s (APTA) Enterprise Cybersecurity Working Group (ECSWG) and Control and Communications Security Working Group (CCSWG) teleconference on “Undetected ICS Cyber Incidents”. The general status was the same as for oil/gas, electric, nuclear power, water/wastewater, medical devices, etc. That is, the focus being on […]