Monday August 9, 2021
Synopsis:
Breach and attack simulations (BAS) are used to assess the risk posed by different threats as well as the effectiveness of corresponding mitigation measures. Most simulation methods have two major downsides: they are highly intrusive tools, as they uses active IP and Port scanning as well as active exploitation tools and benign malware; and they have no means to prioritize the findings and advise what needs to be fixed first.
Radiflow proposed approach to BAS includes the ability to simulate “What-If” scenarios based on zone impact and threat likelihood to enable prioritizing mitigation measures. To facilitate this capability Radiflow’s OT-BAS simulations utilize a complete “digital image” of the production environment that encompasses vulnerabilities in assets, protocols, and network topology.
Radiflow’s CIARA platform offers Automated, Continuous, Consistent risk monitoring and reporting, utilizing, in addition to BAS, also OT digital network image, vulnerability mapping, threat adversary advanced persistent threat (APT), risk gap analysis, and compliance gap analysis and reporting.
Black & Veatch endorses Radiflow’s iSID
Security Brief: Analysis of the Ukraine Cyber-Attack
Securicon endorses the 3180 Security Gateway as a NERC CIP enabler
New (EU) 2016/1148 Cybersecurity Directive
Whitepaper: “Meet Your Attacker – Taxonomy & Analysis of a SCADA Attacker”
Whitepaper: “Optimizing OT Security through Automatic Attacker Evaluation”
Security Brief: The Norsk Hydro Cyberattack – Using AD in IT/OT Networks
Security Brief: Fine-Tuning ICS Threat Models
Radiflow joins SANS in producing the “2019 State of OT/ICS Cybersecurity” survey
Report: KuppingerCole Executive View of SCADA Security by Radiflow
Frost & Sullivan “Customer Value Leadership” Award & Analysis Report
Report: Detecting Threats in a Simulated Water Facility at CISS 2019
White Paper: Using Epidemic Models for Evaluating SCADA/ICS Risks
Radiflow Insights: Attacks on Manufacturing: a Clear and Present Danger
451 Research Reviews and Approves of Radiflow’s OT-MSSP Offering
Security Brief: “A 2020 View of Industrial Cyber Security”
Security Brief: Fear of Cyber-Retaliation by Iranian Attack Groups
Conducting IEC-62443 Assessments Using Radiflow Products
Security Brief “COVID19-Themed Malware and Cyber-Attacks – Overview & Protection Measures”
Security Brief: “The Five Best Practices that will Protect Your OT/ICS Network in 2021″
Breach & Attack Simulations (BAS) in OT environments
White Paper: Risk Assessment & Management for Industrial Organizations
Securing Railway Operations from OT Cyberattacks
Data-driven approach to industrial cyber risk management – Cyber Risk Manangement eBook
White Paper: InController – New State-Sponsored Cyber Attack Tools
White Paper: Securing Pharmaceuticals from OT Cyber Attacks
White Paper: OT Operating Model
Safeguarding the Maritime Industry Through Advanced Cybersecurity
NIS2 is Coming to OT Are you Ready?
Securing OT Supply Chains