Protecting Modern Manufacturing from Modern Cyber Risks

The whole concept of Industry 4.0 is one of  “super-connected plants” with product and service on demand and instant access to real time data. The principle it embodies include the creation of interoperable manufacturing environments, integrated sales and delivery data sets, real time plant management data and remote and autonomous service and maintenance management. It is the embodiment of the future that was imagined in the science fiction of the seventies and eighties.

However with this all connected, autonomous and self managed industry environment come a set of risks and threats and the potential for system breakdown that the same science fictional world relied on for its story lines. Continue reading “Protecting Modern Manufacturing from Modern Cyber Risks”

NIS Directive – 9th May is the Starting Point, not the Finishing Line.

The forthcoming NIS Directive is being studied keenly by Operators of Essential Services across the UK to understand the impact on their business. Whilst it does not have the same public attention as the more wide-ranging GDPR (another piece of EU cyber security legislation coming into force in May) NIS-D is of vital importance to the UK’s Critical National Infrastructure. Continue reading “NIS Directive – 9th May is the Starting Point, not the Finishing Line.”

Rising to the Industry 4.0 cybersecurity challenge

Industry 4.0 is the next phase in modern manufacturing. The term describes the fourth industrial revolution where, driven by the Internet of Things (IoT), physical devices within industrial plants are being fused with the internet so that processes can be carried out through automation. Continue reading “Rising to the Industry 4.0 cybersecurity challenge”

Why Cyber Security is the New Health & Safety for Industrial Control Systems

Many people view the Health and Safety at Work Act 1974 as unnecessary and burdensome, but its introduction has had a dramatic impact on reducing accidents in the workplace, particularly within industrial settings.  Continue reading “Why Cyber Security is the New Health & Safety for Industrial Control Systems”

The Rise of the Botnets – don’t be a victim

The Rise of the Botnets – don’t be a victim

The UK National Trading Standards agency (NTS) have released a report detailing the risks to consumers around the new trend for smart and connected devices around the house. These are becoming more prevalent in many everyday devices, for example, TVs, fridges, lights, thermostats and voice-activated home assistants. They are often referred to as Internet of Things, or IoT.
Continue reading “The Rise of the Botnets – don’t be a victim”

Ransomware & Industrial Control Systems: Never the twain shall meet – until now!

If ransomware infects and encrypts a device you might swap it out for another device, but Andrew Cooke explains, if HMI devices get infected, unplugging equipment isn’t always feasible, so the critical thing has to be prevention.
Continue reading “Ransomware & Industrial Control Systems: Never the twain shall meet – until now!”

Reviews and Reputation

It’s as old as the hills – from market stalls in ancient Greece to online shops, the technique of drumming up business by getting people to pretend to buy goods in order to encourage others to buy these goods. Or paying people to bad mouth the competition and to rave about certain products. Continue reading “Reviews and Reputation”

Ignorance is not a recognised risk mitigation

Risk, the possibility of something happening or not which will affect your business, infrastructure, data, security, work force etc, either negatively or positively. That’s not a classical definition, by any stretch of the imagination from any Risk Management Manuals I’ve ever read, but it’s a definition that holds water in my opinion. It can be shortened further to ‘something that may happen, that will affect your business’.
Continue reading “Ignorance is not a recognised risk mitigation”

Another Targeted Malware Attack

It has been widely reported that the popular system optimisation tool CCleaner has been the subject of a security breach where the download servers were hacked and rogue software was embedded into the distributable file. Continue reading “Another Targeted Malware Attack”

Cyber Security for Connected and Automated Vehicles

We are hearing in the news more and more stories that the next generation of connected and autonomous vehicles are right around the corner. The benefits these vehicles could bring to society are very attractive – greater economy; increased safety; reductions in congestion are just a few of the things we could look forward to. Continue reading “Cyber Security for Connected and Automated Vehicles”

Maritime – Is the board ready for the not so “new” pirate?

The need to recognise the potential risk and prioritise cyber security at board level was indicated by the Deputy Director for loss preventions, North P&I Club, when talking to the maritime world[1].
Continue reading “Maritime – Is the board ready for the not so “new” pirate?”

SCADA

Some time ago, after the onset of the attacks on SCADA systems, I started looking at the issues surrounding their security and the associated risks. I was fortunate in not having to start from scratch. I already had a good grounding in the principles and practice, my father was involved in the whole lifecycle of SCADA systems engineering for much of his working life and I learned a lot from him over the years. This knowledge set me thinking and was the starting point for the research that culminated in my White Paper on SCADA security

Continue reading SCADA