Archive

The UK's National Cyber Security Centre (NCSC) reacts to growing cloud implementations for operational technology, SCADA, and industrial control systems. The shift to cloud computing has caused the NCSC to be concerned that organizations aren't properly managing the new connectivity, including security boundaries and access control mechanisms.

Risk Management

Cyber Resilience

Operational Technology

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

George V. Hulme

Healthcare

Cyber Resilience

Vulnerability Management

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Michael Mimoso

Cyber Resilience

Operational Resilience

Risk Management

Think Like an Attacker: Be Frogger

John Frushour

The U.K.'s enhanced Cyber Assessment Framework is designed to help critical infrastructure organizations comprehensively assess and improve their ability to defend against, and respond to, cyberattacks.

Cyber Resilience

Operational Technology

Operational Resilience

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

George V. Hulme

Cyber Resilience

Risk Management

Federal

Blunting the Risks of Private-Sector Ownership of CI

ADM. Michael S. Rogers, USN (Ret.)

The “Report to the President: Strategy for Cyber-Physical Resilience: Fortifying Our Critical Infrastructure for a Digital World,” reaffirms that cyber-resilience-by-design should be the standard and urges a coalition of government leaders and private sector critical infrastructure asset owners and operators to refocus their energies to build resilient cyber-physical systems (CPS) that are designed to withstand attack.

Federal

Cyber Resilience

Risk Management

Applauding A Codified Strategy for CPS Resilience

Chris Inglis

The Volt Typhoon takedown highlights the challenges the world faces in defending against such threats and the private industry/government collaboration that's necessary to succeed.

Operational Technology

Cyber Resilience

Risk Management

Volt Typhoon Takedown Highlights Critical Infrastructure Security Complexities

George V. Hulme

Cyber Resilience

Internet of Things

Nexus Conference

Vulnerability Management

Srinivas Tummalapenta on the Cybersecurity Potential of AI

Srinivas Tummalapenta, Distinguished Engineer & CTO, IBM Consulting Cybersecurity Services, discusses the applications of AI and cybersecurity, in particular…

Michael Mimoso

Cyber Resilience

Zero Trust

John Frushour on Building an ‘Identity Culture’

John Frushour, CISO of New York Presbyterian Hospital, discusses the identity and access control challenges facing security leaders as cyber-physical systems…

Michael Mimoso

Cyber Resilience

Vulnerability Management

Carraig Stanwyck on AI for Adaptive Defense

Carraig Stanwyck, VP Global Cybersecurity at Avnet, explains how artificial intelligence and machine learning is being used for adaptive defenses that learn…

Michael Mimoso

Cyber Resilience

Risk Management

Dr. Bilyana Lilly on Russian Misinformation Campaigns

Russia foreign policy and misinformation expert Dr. Bilyana Lilly describes how Russia has codified its strategy of misinformation and disinformation in order…

Michael Mimoso

Mandiant and Google Cloud Head of Emerging Threats and Analytics Nathan Brubaker joins to discuss his team's findings and provide more context on the growing capabilities of Sandworm and its targeting of OT.

Operational Technology

Cyber Resilience

Nexus Podcast: Mandiant on Sandworm APT OT Attacks in Ukraine

Michael Mimoso

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

Think Like an Attacker: Be Frogger

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

Merck Ransomware Insurance Ruling Helps Clear Fog of Cyberwar

Cybersecurity Liability Insurance Pitfalls to Avoid

Navigating Cyber Insurance in a Recession

Blunting the Risks of Private-Sector Ownership of CI

Applauding A Codified Strategy for CPS Resilience

On the Menu: Cybersecurity Risks in the Food and Beverage Industry

Change Healthcare Attack May Spur New Cybersecurity Laws

FDA Sets Sights on Medical Device Vulnerability Management

What HHS's New Cybersecurity Performance Goals Mean to Healthcare Organizations

The Purdue Model's Risky Blindspot

NSA's ELITEWOLF Signatures Detect Malicious Activity in OT Environments

Overcoming Inherent Design and Security Limitations of OT Devices

Think Like an Attacker: Be Frogger

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

Three Ways to Foster Collaboration, Understanding Between IT, OT Security, Part 2

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

Three Ways to Foster Collaboration, Understanding Between IT, OT Security, Part 2

Resilience, Recovery Strategies to Combat Ransomware and Extortion

Is Ransomware Still Sexy?

Merck Ransomware Insurance Ruling Helps Clear Fog of Cyberwar

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

FDA Sets Sights on Medical Device Vulnerability Management

Think Like an Attacker: Be Frogger

Technical Debt in OT Environments: How It's Different and Why it Matters

FDA Sets Sights on Medical Device Vulnerability Management

What IT Cybersecurity Teams Need to Know about OT Vulnerabilities (Part 1)

A Strategic Necessity: Compensating Controls in ICS, OT

A Strategic Necessity: Compensating Controls in ICS, OT

Behavioral Identity as the New Perimeter

The Zero Trust for OT Imperative

Srinivas Tummalapenta on the Cybersecurity Potential of AI

Nexus 2023 in Miami

Michael Rogers on Managing Risk and Digital Transformation

Nexus Podcast: Adam Gluck on Industrial DevOps

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Nexus Podcast: Ryan Pickren on New Web-Based PLC Malware Research

Archive

All entries

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Think Like an Attacker: Be Frogger

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

Blunting the Risks of Private-Sector Ownership of CI

Applauding A Codified Strategy for CPS Resilience

Volt Typhoon Takedown Highlights Critical Infrastructure Security Complexities

Srinivas Tummalapenta on the Cybersecurity Potential of AI

John Frushour on Building an ‘Identity Culture’

Carraig Stanwyck on AI for Adaptive Defense

Dr. Bilyana Lilly on Russian Misinformation Campaigns

Nexus Podcast: Mandiant on Sandworm APT OT Attacks in Ukraine

Latest on Nexus Podcast

Nexus Podcast: Adam Gluck on Industrial DevOps

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Nexus Podcast: Ryan Pickren on New Web-Based PLC Malware Research