#otsecurity — Public Fediverse posts

Critical cybersecurity incidents continued to grow during 2025, especially in the industrial and food sectors.

Recent reports show the most affected industries were:
• IT → 23%
• Government → 18%
• Industrial → 18%

Protecting infrastructure today requires continuous visibility, rapid detection, and expert response capabilities.

#cybersecurity #infosec #industrialsecurity #otsecurity #soc #mdr #incidentresponse

https://www.relianoid.com/blog/critical-cybersecurity-incidents-in-the-industrial-sector/

📰 Industrial Sector Most Targeted by Ransomware, NCC Group Report Warns

A new NCC Group report reveals the industrial sector is the #1 target for ransomware, suffering 2,073 attacks in one year. The convergence of IT and OT is creating a perfect storm of risk for critical infrastructure. 🏭⚠️ #OTsecurity #ICS #Ransomware

🔗 https://cyber.netsecops.io

🆕 On Nexus, Jon Holzbauer explores how leading #industrial firms are moving beyond "tribal knowledge" to build resilient, cross-functional security programs. From hybrid IT/OT roles to strategic automation, learn the specific tactics being used to bridge the talent divide before it impacts operations.

💡 Read here: https://nexusconnect.io/articles/ot-cybersecurity-faces-a-skills-gap

#OTSecurity #CybersecuritySkills #IndustrialCybersecurity #CriticalInfrastructure

🆕 On Nexus, Jon Holzbauer explores how leading #industrial firms are moving beyond "tribal knowledge" to build resilient, cross-functional security programs. From hybrid IT/OT roles to strategic automation, learn the specific tactics being used to bridge the talent divide before it impacts operations.

💡 Read here: https://nexusconnect.io/articles/ot-cybersecurity-faces-a-skills-gap

#OTSecurity #CybersecuritySkills #IndustrialCybersecurity #CriticalInfrastructure

📰 Poland Sounds Alarm as Russian Hackers Target Water Supply Systems for Physical Disruption

🚨 Poland's ABW confirms Russian state-backed hackers breached at least 5 municipal water treatment facilities. Attackers gained access to ICS, aiming for physical disruption. A dangerous escalation in attacks on critical infrastructure. 💧 #ICS #OTsecurity #CyberWarfare

🔗 https://cyber.netsecops.io

📊 It shouldn’t take hours of manual configuration to get widgets and filters adjusted to answer a question from a CISO or site manager.

With Claroty xDome, you can now generate AI-powered dashboards and reports in seconds. Just describe what you need, and the platform builds it for you.

No manual configuration. No guesswork.

👉 Read more: https://claroty.com/blog/instantly-visualize-your-cps-environment-with-ai

#CyberPhysicalSystems #AssetManagement #OTSecurity #Cybersecurity

📊 It shouldn’t take hours of manual configuration to get widgets and filters adjusted to answer a question from a CISO or site manager.

With Claroty xDome, you can now generate AI-powered dashboards and reports in seconds. Just describe what you need, and the platform builds it for you.

No manual configuration. No guesswork.

👉 Read more: https://claroty.com/blog/instantly-visualize-your-cps-environment-with-ai

#CyberPhysicalSystems #AssetManagement #OTSecurity #Cybersecurity

📰 SANS and SERC Partner to Bolster Grid Cybersecurity Training

SANS Institute & SERC are partnering to launch a national training initiative to strengthen U.S. grid cybersecurity. ⚡ The program aims to bolster NERC CIP compliance and develop the critical infrastructure workforce. #CyberSecurity #CriticalInfrastructure #OTsecurity

🔗 https://cyber.netsecops.io

📰 SANS and SERC Partner to Bolster Grid Cybersecurity Training

SANS Institute & SERC are partnering to launch a national training initiative to strengthen U.S. grid cybersecurity. ⚡ The program aims to bolster NERC CIP compliance and develop the critical infrastructure workforce. #CyberSecurity #CriticalInfrastructure #OTsecurity

🔗 https://cyber.netsecops.io

Everfield Germany to acquire Rhebo, expanding OT cybersecurity footprint across DACH industrial markets

Everfield Germany GmbH has signed a definitive agreement to acquire Rhebo GmbH. Completion of the transaction remains subject…
#Germany #DE #Europe #EU #Europa #connectedinfrastructure #cyberresilience #CyberResilienceAct #cybersecurity #Everfield #industrialenvironments #industrialoperator #networkmonitoring #NIS2 #OTsecurity #Rhebo #threatlandscape
https://www.europesays.com/germany/10242/

🛡️🇺🇸 CIRCIA starts May 2026‼️🚨

With the Cybersecurity Incident Reporting for Critical Infrastructure Act (CIRCIA) setting new, strict timelines for reporting cyber incidents, NOW is the time to move from reactive detection to a programmatic, compliant approach. In this white paper, find out:

✅ What the 72-hour reporting mandate means for your OT environment
✅ Key strategies to close the visibility gap
✅ How The Claroty Platform helps you achieve full compliance while maintaining operational continuity

📄 Read here: https://claroty.com/resources/white-papers/claroty-circia

#CIRCIA #CyberSecurity #CriticalInfrastructure #Compliance #OTSecurity

🛡️🇺🇸 CIRCIA starts May 2026‼️🚨

With the Cybersecurity Incident Reporting for Critical Infrastructure Act (CIRCIA) setting new, strict timelines for reporting cyber incidents, NOW is the time to move from reactive detection to a programmatic, compliant approach. In this white paper, find out:

✅ What the 72-hour reporting mandate means for your OT environment
✅ Key strategies to close the visibility gap
✅ How The Claroty Platform helps you achieve full compliance while maintaining operational continuity

📄 Read here: https://claroty.com/resources/white-papers/claroty-circia

#CIRCIA #CyberSecurity #CriticalInfrastructure #Compliance #OTSecurity

OT Cybersecurity Sector Fears AI Exclusion

As artificial intelligence revolutionizes software security, the operational technology cybersecurity sector is sounding the alarm: will experts who safeguard factories, grids, and industrial sites be left behind? Pure-play OT security firms are pushing for a seat at the table, fearing they may be sidelined by the latest…

https://osintsights.com/ot-cybersecurity-sector-fears-ai-exclusion?utm_source=mastodon&utm_medium=social

#OperationalTechnology #ArtificialIntelligence #OtSecurity #EmergingThreats #IndustrialControlSystems

Anthropic just disclosed Claude Mythos Preview - autonomous zero-day discovery and exploitation across every major OS and browser.

27-year-old OpenBSD TCP bug. 17-year-old FreeBSD RCE. Multi-vuln chains bypassing KASLR + HARDENED_USERCOPY. Fully autonomous ROP chain construction. Cost: ~$2k per exploit chain.

The entire industry conversation is focused on IT. I think that's wrong.

When I map these capabilities against real OT environments — unaudited PLC firmware, unauthenticated Modbus/DNP3, 12-18 month patch cycles, no endpoint agents on resource-constrained devices — the picture is far worse than for IT.

Stuxnet needed nation-state resources and four zero-days. Mythos collapses the exploit development bottleneck. The domain knowledge for physical process manipulation is widely distributed. The barrier to cyber-kinetic attacks just dropped significantly.

Two pieces:

News + analysis: https://postquantum.com/security-pqc/anthropic-mythos-preview-ai-offensive-security/

OT/CNI implications + pragmatic recommendations (unidirectional gateways, independent analog safety sensors, manual operation fallbacks): https://postquantum.com/cyber-kinetic-security/ai-offensive-capabilities-critical-infrastructure-ot/

#infosec #OTsecurity #ICS #SCADA #cybersecurity #CriticalInfrastructure #AI

CPS attacks aren’t getting more complex. They’re getting more effective. 🚨

📊 This infographic highlights how opportunistic attackers are exploiting exposed assets to cause real-world disruption and why visibility and control have never been more critical.

Get the full breakdown of trends, targets, and tactics shaping today’s threat landscape.

📥 Download the #Team82 Report: https://claroty.com/resources/reports/analyzing-cps-attack-trends

#Cybersecurity #CPS #OTSecurity #ThreatIntelligence #CriticalInfrastructure

With cyber-physical systems (CPS) becoming increasingly central to logistics, supply chains, and industrial operations, protecting them goes beyond traditional IT security. 🌐 It requires a holistic approach that bridges #IT and #OT, providing full visibility, prioritizing risk, and ensuring operational continuity.

🔖 Our latest blog explores how Claroty helps organizations safeguard the CPS that power global supply chains. Read here: https://claroty.com/blog/protecting-the-cyber-physical-systems-that-power-global-supply-chains

#CyberPhysicalSystems #OTSecurity #SupplyChainSecurity #CyberResilience #IndustrialCybersecurity

Dale Peterson asks: where is the evidence OT asset inventory reduces incidents?

We spent weeks chasing infected OT assets across global sites because we did not have one. After building it with ownership and criticality mapped, the same scenario took minutes.

Asset inventory did not prevent the malware. It made timely incident response possible at enterprise scale. In a global organisation with separate IT, OT, and outsourced teams, you cannot coordinate a response without knowing what you have, who owns it, and what it means to the business.

Some controls lack published incident statistics not because they are unproven, but because their value sits in operational coordination, not prevention.

#OTSecurity #IncidentResponse #AssetManagement #CyberSecurity

Dale Peterson asks: where is the evidence OT asset inventory reduces incidents?

We spent weeks chasing infected OT assets across global sites because we did not have one. After building it with ownership and criticality mapped, the same scenario took minutes.

Asset inventory did not prevent the malware. It made timely incident response possible at enterprise scale. In a global organisation with separate IT, OT, and outsourced teams, you cannot coordinate a response without knowing what you have, who owns it, and what it means to the business.

Some controls lack published incident statistics not because they are unproven, but because their value sits in operational coordination, not prevention.

#OTSecurity #IncidentResponse #AssetManagement #CyberSecurity

Dale Peterson asks: where is the evidence OT asset inventory reduces incidents?

We spent weeks chasing infected OT assets across global sites because we did not have one. After building it with ownership and criticality mapped, the same scenario took minutes.

Asset inventory did not prevent the malware. It made timely incident response possible at enterprise scale. In a global organisation with separate IT, OT, and outsourced teams, you cannot coordinate a response without knowing what you have, who owns it, and what it means to the business.

Some controls lack published incident statistics not because they are unproven, but because their value sits in operational coordination, not prevention.

#OTSecurity #IncidentResponse #AssetManagement #CyberSecurity

Dale Peterson asks: where is the evidence OT asset inventory reduces incidents?

We spent weeks chasing infected OT assets across global sites because we did not have one. After building it with ownership and criticality mapped, the same scenario took minutes.

Asset inventory did not prevent the malware. It made timely incident response possible at enterprise scale. In a global organisation with separate IT, OT, and outsourced teams, you cannot coordinate a response without knowing what you have, who owns it, and what it means to the business.

Some controls lack published incident statistics not because they are unproven, but because their value sits in operational coordination, not prevention.

#OTSecurity #IncidentResponse #AssetManagement #CyberSecurity

🔴 Wake-up call for critical infrastructure security:

CERT Polska’s recent report on an energy sector cyber incident is a stark reminder that modern attacks on critical infrastructure are no longer just about data — it's about disruption and destruction.

https://cert.pl/uploads/docs/CERT_Polska_Energy_Sector_Incident_Report_2025.pdf

#OTSecurity #ICS #CriticalInfrastructure #CyberResilience #IndustrialSecurity

🧳 Flyaway kits can make your ops portable, providing faster time to insights and exposure eradication. Use this checklist to decide the right #OTsecurity solution for your kit: https://claroty.com/resources/datasheets/portable-ot-security-flyaway-kit-deployment-checklist

#ClarotyFederal #Federal #JRSS #DoD #ZT #ZeroTrust #government #defense

🔐 Practical Industrial Security: Real-World Lessons from Complex HVDC Projects

We’re excited to announce that our colleague Jan Grotelüschen (GAI NetConsult GmbH) will be speaking at the Industrial Security Conference 2025 in Copenhagen, alongside Simon Gustafson (Amprion GmbH) and co-author Stephan Beirer (GAI NetConsult GmbH).

🎤 Topic of the presentation:
Staying on course in a volatile environment: OT security in complex large-scale HVDC projects – a real-life example

https://insightevents.dk/isc-cph/sessions/staying-on-course-in-a-volatile-environment-ot-security-in-complex-large-scale-hvdc-projects-a-real-life-example/

⚡ At a glance:

Amprion is currently implementing massive offshore grid connection projects such as BorWin4/DolWin4 and BalWin1/BalWin2. These high-voltage direct current (HVDC) lines span up to 380 km and deliver 5.8 GW of power per project – enough to supply electricity to nearly 6 million people.
In this presentation, the speakers, who are largely responsible for the specification and monitoring of the implementation of OT security for this HVDC project, will present the projects itself and report on the cyber security challenges and lessons learnt.

🔍 Key OT Security Challenges Covered:
• Dynamic regulation: Adapting to evolving frameworks like NIS-2, RCE, CRA – even mid-project
• Technology vs. longevity: IT/OT convergence meets decades-long system life cycles
• Managing uncertainty: Constant change in technologies, requirements, and stakeholders

📌 This session provides real-world insights into securing critical infrastructure under real conditions – including what worked, what didn’t, and how lessons learned are shaping better security strategies.

🔗 More about the industrial security conference: https://www.linkedin.com/company/industrial-security-conference-cph/posts/?feedView=all

#OTSecurity #CriticalInfrastructure #HVDC #CyberSecurity #EnergyTransition #ICSCPH #GAINetConsult #Amprion #NIS2 #CRA #IndustrialSecurity

🚨 90% of UK industrial firms hit by cyberattacks this year

IoT vulnerabilities, insider threats, and OT risks are exposing critical systems in manufacturing, energy, and more.

💡 How to stay secure? RELIANOID ADC protects industrial IT infrastructure with:
✅ mTLS authentication
✅ Real-time threat blocking
✅ Zero-downtime updates

Strengthen your defenses today!

#Cybersecurity #IndustrialSecurity #RELIANOID #IoTSecurity #OTSecurity
https://www.relianoid.com/blog/strengthening-industrial-cybersecurity-nearly-90-of-uk-organizations-with-incidents/

Ever wonder how Santa keeps his sleigh tech secure? It might look a lot like Coburn Slay's world!
- Safeguarding systems from WWII-era B-52 simulators to modern VR training rigs.
- Navigating compliance frameworks like NIST 800-53 & CMMC in the aviation industry.
- Why simplicity is the best present in OT environments.
- How legacy tech integrates with today's cybersecurity demands.

https://buff.ly/3OEvRow

#Cybersecurity #OTSecurity #AviationTech

Oohh look what I found on my desk this morning! Hot off the press, the 3rd edition. 👍

I don't usually get excited about books, but this is to industrial security what "The C Programming Language" is to devs. The definitive guide to the subject. Best read slowly and with copious notes scribbled down.

#IndustrialSecurity #otsecurity