Defense Industrial Base

Podcast Episode 132: NERC issues a Big Fine – does it matter?

Podcast: Play in new window | Download (Duration: 28:27 — 32.6MB)Subscribe: Android | Email | Google Podcasts | RSSIn this week’s episode of the podcast (#132): in the wake of news of the biggest fine yet for violations of the NERC Critical Infrastructure Protection (CIP) standard, we talk with Willy Leichter and Saurabh Sharma of the firm Virsec about whether the industry’s main security standard even matters in an age of sophisticated, nation-backed hackers. As we reported last week, NERC – the North American Electric Reliability Corporation – issued a $10 million fine and a 250 page report (PDF) detailing the failure by one of its member companies to abide by the organization’s main cyber security regulation the Critical Infrastructure Protection or CIP standards. Thirteen of the violations listed were rated as a “serious risk” to the operation of the Bulk Power System and 62 were rated a “moderate risk.” […]

Our Analog Future: Experts Call for Preserving Copper, Pneumatic Systems as Hedge for Cyber Risk

In-brief: The U.S. should invest in equipment and talent to preserve legacy, analog infrastructure such as copper wire telecommunications networks and pneumatic pumps as a hedge against massively disruptive cyber attacks and other interruptions, two researchers with The MITRE Corporation argue in a recent opinion piece. 

Start-Up Claroty Has Eye On Industrial Control System Threats

In-brief: Claroty, an Israel-based start-up emerged from stealth mode on Tuesday, unveiling a new platform that it claims will help owners of industrial control systems detect threats and attacks by sophisticated adversaries. 

Podcast: Privacy Sweeps and securing the IoT Supply Chain

In-brief: Security Ledger Editor in Chief Paul Roberts speaks with John Dickson, a principal at Denim Group about the recent Internet of Things privacy sweep and about the challenge of securing the Internet of Things supply chain. 

Firm Puzzled by Body Cams Infected with Malware

In-brief: a California company that makes wearable cameras that are used by law enforcement and the military said a report that it shipped cameras infected with the Conficker virus were “distressing,” but that it was unable to locate the malware on its devices or within its environment.