Cybersecurity

The NCCIC has released an advisory regarding several vulnerabilities affecting multiple Allen-Bradley Stratix 5950 Security Appliances running Cisco ASA v9.6.2 and earlier. The vulnerabilities include improper input validation, improper certificate validation, and resource management errors. Successful exploitation of these vulnerabilities could allow an attacker to bypass client certification to create connections to the affected device or cause the device to crash. These vulnerabilities are remotely exploitable.

Cybersecurity firm Kaspersky Lab and research consulting firm PAC collaborated on a recent study on the State of Industrial Cybersecurity 2018. The study investigated concerns regarding cyber attacks in industrial control environments, including likelihood of becoming a victim, as well as attack detection capabilities.

The NCCIC recently published Security Tip 18-002, Defending Against Illicit Cryptocurrency Mining Activity, which seeks to make aware its partners of the risks associated with cryptocurrencies and to help them avoid falling victim to cryptocurrency mining activity. This product describes crytpocurrency and cryptomining, explains the tactic of cryptojacking, and offers tips for how to protect systems and devices from this activity. These tips include checking systems privilege policies, uninstalling unused software, and creating and monitoring blacklists, among others.

As industrial organizations embrace the Internet of Things (IoT), they must strike the proper balance between benefit and risk. SecurityWeek posts an article highlighting strategies to reduce the vulnerabilities inherent in Industrial IoT deployments from resulting in unintended consequences threatening safety and security. Having a robust asset management program is the first step and is foundational to protecting every network environment.