Security News

There's going to have to be a lot more new procedures developed, a lot better procedures developed to bridge the gap between operational technology and information technology to get those control systems where they need to be. There's going to be a really good focus on what it means to be at that national, and even the regional levels within the control systems there, to start having more robust sharing of that information that's going on within these networks.

IronNet Cybersecurity and Dragos announced that they are launching a new joint initiative designed to help ensure the security of the nation's critical infrastructure through an integrated IT-OT approach to cybersecurity. The IronNet and Dragos joint initiative spans both companies' respective technical and business domains and is focused on integrating the IronNet IronDome and the Dragos Neighborhood Keeper threat intelligence sharing and community-wide visibility solutions in order to increase the overall security posture of organizations - and enable them to focus on core business and digital transformation efforts.

Each one of these supply chain attacks targeted a different piece of implicitly trusted infrastructure-infrastructure that you may or not be paying attention to as a potential target in your organization. Package squatting via software package repositories.

As modern infrastructures get more complex everyday, DevOps teams have a hard time tracking infrastructure drift. The multiplicity of parameters turns infrastructure drift into a multidimensional issue as this situation implies tracking changes across a combination of setups over time.

Confluent announced Confluent for Kubernetes, a platform purpose-built to bring cloud-native capabilities to data streams in private infrastructures. To make it easier and faster to harness the value of data in motion across an entire organization, Confluent drew on its expertise managing thousands of Apache Kafka clusters in Confluent Cloud to offer the same cloud-native experience for on-premises environments.

The big news in critical infrastructure security is the ransomware-triggered shutdown of the Colonial gasoline pipeline - the largest such pipeline in the USA. The attack has been attributed to the DarkSide ransomware group. Even without evidence that the attack has migrated into ops, the organization might shut everything down in an abundance of caution, like they did in the Norsk Hydro attack in 2019.

South Korea's Ministry of Trade, Energy and Infrastructure has ordered a review of the cybersecurity preparedness of the nation's energy infrastructure. Minister of Trade, Industry and Energy Moon Seung-wook convened a meeting yesterday, saying it was needed considering the ransomware attack on the Colonial Pipeline that shuttered one of the USA's main oil transport facilities.

Cybersecurity expert discusses the many ways attackers could have gotten access to the Colonial Pipeline company and reminds us why the threat always looms. TechRepublic's Karen Roby spoke with Vyas Sekar, a professor in electrical and computer engineering at Carnegie Mellon University, about the Colonial Pipeline ransomware attack by the hacker group Darkside.

Expert says there are several ways the hackers may have gotten access and how we can possibly prevent these attacks in the future.

Klarrio is now offering its customers the opportunity to use EU-hosted infrastructure for their cloud needs selecting any of Exoscale's data center locations. Combining Klarrio's system integration expertise with Exoscale cloud infrastructure while adhering to initiatives such as Gaia-X will provide customers with best-of-breed technology and solutions.