Resources

Blog

The State of the US National Cybersecurity Strategy for the Electric Grid

By Anastasios Arampatzis on Wed, 02/01/2023

The distribution systems of the U.S. energy grid — the portions of the grid that carry electricity to consumers — are growing more susceptible to cyber-attacks, in part due to the advent of monitoring and control technology and their reliance on them. However, the magnitude of the possible consequences of such attacks is not fully understood. Reports by...

Blog

Healthcare Supply Chain Attacks Raise Cyber Security Alarm

Wed, 01/11/2023

The healthcare sector has become a popular target for cybercriminals and is one of the most targeted industries by cyber criminals. In 2022, 324 attacks were reported in the first half of the year. As bad actors continue to target the healthcare industry, cybersecurity experts and healthcare administrators should be aware that attacks are frequently...

Blog

The Future of Connected, Autonomous, Shared, and Electric (CASE) Vehicles is Upon Us.

By Tripwire Guest Authors on Fri, 12/30/2022

The popularity of electric vehicles is partly a response to the desire of achieving sustainability and carbon footprint reduction. Automobile manufacturers are making substantial investments to tackle emissions issues, create environment-friendly vehicles, and align with Environmental, Social, and Governance (ESG) requirements. To achieve brand edge and...

Blog

How to deal with cyberattacks this holiday season

By Tripwire Guest Authors on Thu, 12/15/2022

The holiday season has arrived, and cyberattacks are expected to increase with the upcoming celebratory events. According to The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) 2022 Holiday Season Threat Trends and summary report, ransomware and phishing attacks are expected to increase in retail. With the FIFA World Cup 2022,...

Blog

Choosing the Right Industrial Cybersecurity Framework

By John Salmi on Wed, 12/07/2022

It’s no surprise that industrial environments have become increasingly valuable targets for malicious behavior. The State of Security has featured many cybersecurity events across myriad industrial verticals, including but not limited to chemical manufacturing, transportation, power generation and petrochemical. Several of these industries have taken...

Blog

Cyberattacks are targeting smaller healthcare companies and specialty clinics. But why?

By Tripwire Guest Authors on Mon, 11/28/2022

The healthcare industry has been a favored target for cybercriminals for many years. In the first half of 2022 alone, 324 attacks against healthcare organizations have been reported. Attackers have primarily focused on large hospitals in years past, but there has been a sudden switch to smaller healthcare companies and specialty clinics. There seems to...

Blog

The Cross-Sector Cybersecurity Performance Goals (CPGs): What you need to know

By Tyler Reguly on Wed, 11/09/2022

The Cross-Sector Cybersecurity Performance Goals (CPGs) are a new baseline released jointly by CISA, NIST, and the interagency community, with a goal of providing consistency across all critical infrastructure. The primary webpage for these goals gives us a great understanding of what they are (and are not). It is worth delving into those specifics to...

Blog

Getting started with Zero Trust: What you need to consider

By David Bruce on Mon, 11/07/2022

Have you ever walked up to an ATM after another person finished with the machine only to find they left it on a prompt screen asking, “Do you want to perform another transaction?” I have. Of course, I did the right thing and closed out their session before beginning my own transaction. That was a mistake an individual made by careless error which could...

Blog

Privacy Updates in Q3 2022: Major Developments Across the Globe

By Tripwire Guest Authors on Fri, 11/04/2022

The third quarter saw some major developments across the privacy space. In the U.S., we saw a federal bill for comprehensive privacy achieve more than ever before, children’s privacy proved to remain a top concern, and the Federal Trade Commission formally began its heavily criticized “Magnuson-Moss rulemaking” process. Not to be outdone, the...

Blog

New Canadian Cyberattack Data Says 80% of SMBs Are Vulnerable

By Tripwire Guest Authors on Tue, 10/25/2022

If you were to take a look at the cybersecurity news cycle, you’d be forgiven for thinking that it’s only large enterprises with expansive customer bases and budgets that are the most vulnerable to attacks. But that’s not entirely true. Even if it’s at a much smaller scale, small- and medium-sized businesses (SMBs) still have stores of sensitive...

Blog

What the industry wants to improve on NIST Cybersecurity Framework 2.0

By Anastasios Arampatzis on Mon, 10/24/2022

The NIST Cybersecurity Framework was meant to be a dynamic document that is continuously revised, enhanced, and updated. These upgrades allow the Framework to keep up with technological and threat developments, incorporate lessons learned, and transform best practices into standard procedures. NIST created the Framework in 2014 and updated it with CSF 1...

Blog

Place your budgets on the right cybersecurity for your business

By Chris Hudson on Thu, 10/20/2022

As budgets start to tighten for countless businesses concerned about the potential financial winter that many are predicting, security teams across the world are reviewing where best to place their investment to ensure they get the best “bang for their buck”. With that in mind, now might be time to explore some key areas where I see organisations...

Blog

How Is IT/OT Convergence Transforming Smart Manufacturing?

By Tripwire Guest Authors on Mon, 10/17/2022

For most modern businesses, there’s a divide between Information Technology (IT) and Operational Technology (OT). The difference between these equally integral facets of digital manufacturing is a subject currently under debate. Ultimately, information technology deals with information and data. In contrast, operational technology handles the physical...

Guide

Zero Trust and the Seven Tenets

Whether you are new to information security, or you’re a long-time practitioner, it seems that “zero trust” is the latest initiative at the top of everyone’s priority list. Special Publication 800-207, created by the National Institute of Standards and Technology (NIST) offers guidance for instituting a zero trust architecture. The document outlines the basic tenets that form the foundation of...

Case Study

Case Study: Why One Fortune 250 Electric & Gas Utility Trusts Fortra’s Tripwire for Unbeatable Accuracy

Vulnerability & Risk Management

Cybersecurity

Compliance

NERC CIP

PCI DSS

Industrial Control Systems

Blog

Defense in Depth: 4 Essential Layers of ICS Security

By Editorial Staff on Tue, 09/20/2022

It is always said that security is never a one-size-fits-all solution. This is true not only because of the apparent infinite varieties of equipment in each individual organization, but also, and perhaps more importantly, the different ways that every organization views security. Some spend lots of time focusing on physical security, especially those...

On-Demand Webinar

Industrial Cybersecurity - What You Don't Know Might Hurt You

Mon, 08/15/2022

Getting a clear assessment of your assets is the first step toward developing a mature OT network or control system. A well maintained asset inventory allows your organization to quickly manage risk affecting your operations availability, reliability and safety. Industrial environments often need to map assets to NIST, ITIL, ISO, COBIT or process automation standards like ANSI/ISA99-IEC-62443. You can achieve significant efficiency improvement and save time within industrial environments by automating asset management instead of following manual spreadsheet processes. Cyber security experts David Meltzer, Chief Research Officer at Tripwire, Tony Gore, CEO at Red Trident Inc., and John Powell, Senior Critical Infrastructure Engineer at Red Trident Inc., will discuss the practical 1-2-3 basics of industrial cyber security and how to get started automating asset management. Attendees will also learn how to build an effective strategy for protecting industrial assets - networks, endpoints and controllers. Key Takeaways: Learn how to automate and simplify the inventory process and secure your assets Understand what cyber security standards may apply to your unique environment Hear real-world tips on how to prioritize and work across functional silos within your company Receive an industrial cyber security assessment checklist to help gauge your starting point

Guide

Tripwire 2020 Skills Gap Survey

The skills gap remains one of the biggest challenges within the cybersecurity industry. To gain more perspective on what organizations are experiencing, Tripwire partnered with Dimensional Research to survey 342 security professionals on this issue. This study explores hiring trends, how security teams are changing, and how they plan to address the issue in the face of growing cyber threats. ...

Guide

Tripwire State of Industrial Cybersecurity Report

As news of cyberthreats targeting industrial environments like energy utilities and manufacturing plants continues to surface, Tripwire surveyed security professionals who work in these industries to understand how industrial organizations are protecting themselves. The survey findings revealed insights on the security professionals’ levels of concern, investment in cybersecurity, and how they are...

Guide

Physical Cybersecurity: ICS Attack Scenarios and CIP-007 R1

The premise of a January 27, 2015, article by CNBC is that there is good evidence that a cyber attack against nearly any country’s critical infrastructure could be imminent. This kind of reporting has become so commonplace, but this doesn’t seem like just more FUD (fear, uncertainty, and doubt) journalism. ...

The State of the US National Cybersecurity Strategy for the Electric Grid

Healthcare Supply Chain Attacks Raise Cyber Security Alarm

The Future of Connected, Autonomous, Shared, and Electric (CASE) Vehicles is Upon Us.

How to deal with cyberattacks this holiday season

Choosing the Right Industrial Cybersecurity Framework

Cyberattacks are targeting smaller healthcare companies and specialty clinics. But why?

The Cross-Sector Cybersecurity Performance Goals (CPGs): What you need to know

Getting started with Zero Trust: What you need to consider

Privacy Updates in Q3 2022: Major Developments Across the Globe

New Canadian Cyberattack Data Says 80% of SMBs Are Vulnerable

What the industry wants to improve on NIST Cybersecurity Framework 2.0

Place your budgets on the right cybersecurity for your business

How Is IT/OT Convergence Transforming Smart Manufacturing?

Zero Trust and the Seven Tenets

Case Study: Why One Fortune 250 Electric & Gas Utility Trusts Fortra’s Tripwire for Unbeatable Accuracy

Defense in Depth: 4 Essential Layers of ICS Security

Industrial Cybersecurity - What You Don't Know Might Hurt You

Tripwire 2020 Skills Gap Survey

Tripwire State of Industrial Cybersecurity Report

Physical Cybersecurity: ICS Attack Scenarios and CIP-007 R1

Contact Information

Privacy Policy

Cookie Policy

Impressum