Resources

Blog

Closing Integrity Gaps with NIST CSF

By Lane Thames on Wed, 09/27/2023

Image The then-new 2014 NIST Cybersecurity Framework (CSF) was designed to plug security gaps in operational technology. It’s still in use today and more relevant than ever. Fortra’s whitepaper provides a cohesive review of this security staple and how to glean the best out of it for your strategy. A Brief History of NIST CSF “The...

Blog

How to Build an Effective ICS Security Program

By Michael Betti on Mon, 09/18/2023

Image How to Build an Effective ICS Security Program Of all the different areas of cybersecurity, not many are as important, or have as far-reaching consequences as industrial control systems (ICS) security. While most relevant organizations would agree that ICS security is a significant concern for their operations, it is easier...

Blog

OT Security: Risks, Challenges and Securing your Environment

By Katrina Thompson on Mon, 09/11/2023

Image Before the revolution of Information Technology (IT), the world experienced the revolution of Operational Technology (OT). Operational Technology is the combination of hardware and software that controls and operates the physical mechanisms of industry. OT systems play an important role in the water, manufacturing, power, and...

On-Demand Webinar

Expert Compliance Automation Tips for Financial Services

Thu, 08/17/2023

Cybersecurity compliance standards like the Payment Card Industry Data Security Standard (PCI DSS) and Society for Worldwide Interbank Financial Telecommunications (SWIFT) do an excellent job of hardening systems against breaches. This is especially important in the financial services sector, a common target for cybercriminals. This on-demand webinar presented by Senior...

Compliance

CIS Controls

FISMA

GDPR

PCI DSS

SOX

Blog

Former contractor accused of remotely accessing town's water treatment facility

By Graham Cluley on Fri, 07/14/2023

Image A federal grand jury has indicted a former employee of a contractor operating a California town's wastewater treatment facility, alleging that he remotely turned off critical systems and could have endangered public health and safety. 53-year-old Rambler Gallor of Tracy, California, held a full-time position at a Massachusetts...

Guide

How Managed Services Can Help With Cybersecurity Compliance

Organizations are often overburdened with managing complex tools to handle their most important compliance responsibilities, and in many cases lack the internal headcount to manage those tools with highly-trained expertise. Managed services can solve your security staffing and resource challenges by arming your team with security expertise to maintain optimal compliance. ...

Compliance

CIS Controls

FISMA

GDPR

HIPAA

NERC CIP

NIST

PCI DSS

SOX

Blog

What (Still) Needs to be Done to Secure the U.S. Power Grid in 2023?

By Tripwire Guest Authors on Tue, 06/27/2023

Image It’s no secret that the U.S. power grid is one of the main foundations of the nation’s economy, infrastructure, and daily way of life. Now that almost everything is digitized, it is hinging on it even more. We wouldn’t be able to use even most vending machines (not to mention cell towers or the internet) without a working...

Blog

The Future of Driverless Cars: Technology, Security and AI

By Bob Covello on Mon, 06/05/2023

Image Back in 2015, we published an article about the apparent perils of driverless cars. At that time, the newness and novelty of sitting back and allowing a car to drive you to your destination created a source of criminal fascination for some, and a nightmare for others. It has been eight years since the original article was...

On-Demand Webinar

ATT&CKing the Center for Internet Security

Thu, 06/01/2023

From the Critical Security Controls to the Community Defense Model, CIS has provided plenty of mappings that show how knowledge from MITRE ATT&CK can be integrated with their offerings. Last year, CIS went a step further, integrating mappings from MITRE ATT&CK into their Benchmarks. This provides a wealth of information to defenders, but too much information can sometimes lead...

Datasheet

Tripwire NERC CIP Report Catalog

Fortra’s Tripwire NERC CIP Solution Suite is an advanced offering that augments Tripwire’s tools for meeting 23 of NERC CIP’s 44 requirements. The Tripwire NERC CIP Solution Suite allows you to achieve and maintain NERC CIP compliance with high efficacy and reduced effort. This suite includes continuous monitoring of cyber assets, automated assessment of security, and audit...

Blog

Distributed Energy Resources and Grid Security

By Tripwire Guest Authors on Tue, 04/04/2023

Image As the United States government, the energy industry, and individual consumers work toward cleaner and more sustainable energy solutions, it is crucial to consider how new and advancing technologies affect, and are affected by, cybersecurity concerns. Increasing use of smart energy devices can be useful for consumers to have...

Blog

A Look at The 2023 Global Automotive Cybersecurity Report

By Tripwire Guest Authors on Mon, 03/20/2023

Image From its inception, the automotive industry has been shaped by innovation and disruption. In recent years, these transformations have taken shape in rapid digitization, ever-growing Electric Vehicle (EV) infrastructure, and advanced connectivity. These shifts have redirected the automotive industry, meeting and surpassing...

Blog

How Retiring Gas and Coal Plants Affects Grid Stability

By Katrina Thompson on Thu, 03/16/2023

Image Legacy gas and coal plants are being aged out – and no one wants to pay enough to keep them going. With increased pressure from green energy laws and added competition from renewable sources, these monsters of Old Power are being shown the door. Considering they've predated and precipitated all Industrial Revolutions (except for...

Blog

How to Advance ICS Cybersecurity: Implement Continuous Monitoring

By Anastasios Arampatzis on Mon, 02/06/2023

Image Industrial control systems are fundamental to all industrial processes, from power generation to water treatment and manufacturing. ICS refers to the collection of devices that govern a process to ensure its safe and effective execution. These devices include Supervisory Control and Data Acquisition (SCADA) systems, Distributed...

Blog

The State of the US National Cybersecurity Strategy for the Electric Grid

By Anastasios Arampatzis on Wed, 02/01/2023

Image The distribution systems of the U.S. energy grid — the portions of the grid that carry electricity to consumers — are growing more susceptible to cyber-attacks, in part due to the advent of monitoring and control technology and their reliance on them. However, the magnitude of the possible consequences of such attacks is not...

Blog

The Future of Connected, Autonomous, Shared, and Electric (CASE) Vehicles is Upon Us.

By Tripwire Guest Authors on Fri, 12/30/2022

Image The popularity of electric vehicles is partly a response to the desire of achieving sustainability and carbon footprint reduction. Automobile manufacturers are making substantial investments to tackle emissions issues, create environment-friendly vehicles, and align with Environmental, Social, and Governance (ESG) requirements....

Blog

Choosing the Right Industrial Cybersecurity Framework

By John Salmi on Wed, 12/07/2022

Image It’s no surprise that industrial environments have become increasingly valuable targets for malicious behavior. The State of Security has featured many cybersecurity events across myriad industrial verticals, including but not limited to chemical manufacturing, transportation, power generation and petrochemical. Several of...

Blog

Cyberattacks are targeting smaller healthcare companies and specialty clinics. But why?

By Tripwire Guest Authors on Mon, 11/28/2022

Image The healthcare industry has been a favored target for cybercriminals for many years. In the first half of 2022 alone, 324 attacks against healthcare organizations have been reported. Attackers have primarily focused on large hospitals in years past, but there has been a sudden switch to smaller healthcare companies and specialty...

Blog

The Cross-Sector Cybersecurity Performance Goals (CPGs): What you need to know

By Tyler Reguly on Wed, 11/09/2022

Image The Cross-Sector Cybersecurity Performance Goals (CPGs) are a new baseline released jointly by CISA, NIST, and the interagency community, with a goal of providing consistency across all critical infrastructure. The primary webpage for these goals gives us a great understanding of what they are (and are not). It is worth delving...

Blog

Getting started with Zero Trust: What you need to consider

By David Bruce on Mon, 11/07/2022

Image Have you ever walked up to an ATM after another person finished with the machine only to find they left it on a prompt screen asking, “Do you want to perform another transaction?” I have. Of course, I did the right thing and closed out their session before beginning my own transaction. That was a mistake an individual made by...

Closing Integrity Gaps with NIST CSF

How to Build an Effective ICS Security Program

OT Security: Risks, Challenges and Securing your Environment

Expert Compliance Automation Tips for Financial Services

Former contractor accused of remotely accessing town's water treatment facility

How Managed Services Can Help With Cybersecurity Compliance

What (Still) Needs to be Done to Secure the U.S. Power Grid in 2023?

The Future of Driverless Cars: Technology, Security and AI

ATT&CKing the Center for Internet Security

Tripwire NERC CIP Report Catalog

Distributed Energy Resources and Grid Security

A Look at The 2023 Global Automotive Cybersecurity Report

How Retiring Gas and Coal Plants Affects Grid Stability

How to Advance ICS Cybersecurity: Implement Continuous Monitoring

The State of the US National Cybersecurity Strategy for the Electric Grid

The Future of Connected, Autonomous, Shared, and Electric (CASE) Vehicles is Upon Us.

Choosing the Right Industrial Cybersecurity Framework

Cyberattacks are targeting smaller healthcare companies and specialty clinics. But why?

The Cross-Sector Cybersecurity Performance Goals (CPGs): What you need to know

Getting started with Zero Trust: What you need to consider

Contact Information

Privacy Policy

Cookie Policy

Impressum