Patching security vulnerabilities in industrial control systems (ICS) is useless in most cases and actively harmful in others, ICS security expert and former NSA analyst Robert M. Lee of Dragos told the US Senate in written testimony last Thursday.
In a series of reports, specialist cybersecurity vendor Dragos has published data on the cybersecurity risks facing industrial control systems (ICS). One of the three reports is titled Hunting and Responding to Industrial Intrusions.
How many hacking groups are focusing on ICS systems? Dragos security researchers say at least five were active in 2017.
New Dragos report finds rising number of public vulnerability advisories around ICS with not enough reasonable guidance around how to deal with these flaws.
Though increasingly serious cybersecurity threats loom, nearly two-thirds of U.S. industrial control system (ICS) vulnerabilities identified in 2017 could cause severe operational impact if exploited, cybersecurity firm Dragos Inc. warned in a series of reports published March 1.
Hackers who attacked a petrochemical plant in Saudi Arabia last year gained control over a safety shut-off system that is critical in defending against catastrophic events, according to security researchers shedding light on what they describe as a new type of cyberattack.
Electricity isn’t exactly a growth business, so Xcel Energy’s employee head count doesn’t budge much from year to year. One department is an exception: cybersecurity.
On this week’s episode of Research Saturday, we talk about TRISIS, the ICS tailored malware affecting the safety systems of at least one victim in the Middle East. This is only the fifth known incident of malware targeting ICS systems, and joining us to talk about it is Robert M. Lee, CEO of Dragos.
We have considerably expanded our cybersecurity program at the Forum this year, and as a preview ARC vice president and cybersecurity domain expert Sid Snitkin interviewed NaturEner's Marc DeNarie and Dragos Inc. founder and CEO Robert Lee. In this podcast, Marc shares some details of the case study he will present jointly with Rob at the ARC forum about his experience implementing a cybersecurity strategy with the Dragos solution at NaturEner.
Swedish and international security experts estimate that there have been serious security shortcomings in the infrastructure that provides the Swedish rail network with electricity.
The country has been attacked the past two years in December. A new strike could have major implications for cybersecurity in the U.S.
Cyberattacks are a major concern for industrial organizations around the world. Most have accepted the need for cybersecurity and invested in defensive technologies and practices recommended by automation suppliers and security consultants.
A government security alert about foreign hackers probing the networks of U.S. energy companies frightened casual observers, but security experts say the report provided little more than an update on relatively well-known activity and behavior.
The U.S government issued a rare public warning that sophisticated hackers are targeting energy and industrial firms, the latest sign that cyber attacks present an increasing threat to the power industry and other public infrastructure.
Last week cybersecurity firm Symantec released a report on what it calls Dragonfly 2.0—a collection of intrusions into industrial and energy-related organizations worldwide.
A well-resourced hacking group known as Dragonfly is actively and successfully targeting U.S. and European energy companies. Robert Lee, CEO of cybersecurity company Dragos, told CyberScoop that people shouldn’t be alarmed, though.
From the media buzz, one might conclude that power grid infrastructure is teetering on the brink of a hacker-induced meltdown. The real story is more nuanced, however. Scientific American spoke with grid cybersecurity expert Robert M. Lee, CEO of industrial cybersecurity firm Dragos, Inc., to sort out fact from hype.
Maryland-based firm, Dragos, raised $9 million in a funding round co-led by Silicon Valley venture fund Allegis Capital and east coast Energy Impact Partners.
The funding will go into expanding the team and spreading the firm's Dragos Platform technology. Built on the founders' knowledge of attacks on actual industrial control systems, it looks out for and acts on anything that looks abnormal.
Robert M. Lee thinks we should start taking infrastructure cybersecurity seriously. For a number of people right now, that may mean calming down. The U.S. is coming off two high-profile cyber threats that were less dangerous than many made them out to be.
Russian government hackers were behind recent cyber-intrusions into the business systems of U.S. nuclear power and other energy companies in what appears to be an effort to assess their networks, according to U.S. government officials.
Washington Post coverage of Dragos' research into CRASHOVERRIDE and the potential impacts.
In this report, Dragos’ Robert M. Lee and Ben Miller combine their knowledge of proper industrial control system functionality with new research conducted to better understand the threats posed to the ICS.
This week’s Deep Dive will revolve around the discussion I had with Sean Peasley, of Deloitte & Touche LLP, about their latest announcement of their new cyber risk platform. This platform was enabled by Dragos...
“We need to begin to have more technical leadership in government positions,” said Rob Lee, CEO of Dragos, Inc. in the context of attacks like the Ukraine power grid attack.
Two days before Christmas the lights went out across the Ivano-Frankivsk region of Ukraine.
IT WAS 3:30 p.m. last December 23, and residents of the Ivano-Frankivsk region of Western Ukraine were preparing to end their workday and head home through the cold winter streets.
The Obama administration’s efforts to press its election-hacking accusations against Russia could be undermined by a flurry of unfounded cyber charges against Moscow.