EP 44: Performing Security Assessments on ICS systems

Update: 2024-08-27

Description

Too few vulnerabilities in industrial control systems (ICS) are assigned CVEs because of client non-disclosure agreements. This results in repeatedly discovering the same vulnerabilities for different clients, especially in critical infrastructure. Don C. Weber from IOActive shares his experiences as an ICS security professional and suggests improvements, including following the SANS best practices for ICS security..

Comments

Top Podcasts

The Best New Comedy Podcast Right Now – June 2024 The Best News Podcast Right Now – June 2024 The Best New Business Podcast Right Now – June 2024 The Best New Sports Podcast Right Now – June 2024 The Best New True Crime Podcast Right Now – June 2024 The Best New Joe Rogan Experience Podcast Right Now – June 20 The Best New Dan Bongino Show Podcast Right Now – June 20 The Best New Mark Levin Podcast – June 2024

In Channel

EP 46: Hacking Israeli-made Water Treatment Devices In Pennsylvania

2024-09-2433:34

EP 45: Laser Fault Injections on a Shoestring Budget

2024-09-1032:35

EP 44: Performing Security Assessments on ICS systems

2024-08-2734:16

EP 43: Hacking Large-Scale Off-Grid Solar Systems and Other Consumer IoT Devices

2024-08-1350:45

EP 42: OT-CERT

2024-07-3034:23

EP 41: Firmware SBOMs, Zero Trust, And IoT Truth Bombs

2024-07-1641:26

EP 40: Hacking IoT Surveillance Cameras For Espionage Operations

2024-07-0228:27

EP 39: Hacking Water Systems and the OT Skills Gap

2024-06-1840:20

EP 38: Regulating OT Data Breaches And Ransomware Reporting

2024-06-0442:50

EP 37: Solving Mysteries. Saving Lives. Just Another Day with OT Incident Response and Forensics

2024-05-2142:05

EP 36: Securing SCADA Systems In The Cloud

2024-05-0726:02

EP 35: Outsized Kinetic Response to OT Attacks

2024-04-2339:13

EP 34: Quantifying Risk in IoT and OT Systems

2024-04-0940:44

EP 33: Turning EDRs and Cloud Backups into Malicious Wipers

2024-03-2632:48

EP 32: Using ChatGPT To Perform Side Channel Attacks On Real Hardware

2024-03-1330:56

EP 31: How Operation Volt Typhoon Shows That IoT & OT Devices Could Be Used In Cyberwarfare

2024-02-2743:31

EP 30: Of IoT Vulnerabilities and Consumer IoT Labels

2024-02-1343:49

EP 29: The Rise of Smash and Grab Data Exfiltration

2024-01-3036:09

EP 28: Why Mapping IT Security to OT Networks Doesn’t Always Work

2024-01-1642:28

EP 27: Cyber Physical Security As A Shared Responsibility

2024-01-0535:10

00:00

EP 44: Performing Security Assessments on ICS systems

#box-pro-ellipsis-172747231571756{-webkit-line-clamp:2;}EP 44: Performing Security Assessments on ICS systems

EP 44: Performing Security Assessments on ICS systems

Robert Vamosi

EP 44: Performing Security Assessments on ICS systems