Partnering with Sealing Technologies for OT security

"Federal agencies made notable gains in cyber-physical system (CPS) security over the past year, but major risks remain, according to new research from MeriTalk and Claroty. The new study, 'Guardians of Government, Vol. 2: Fortifying the cyber-physical frontier,' reveals that many agencies still have gaps in CPS expertise and less than half have achieved full asset visibility." 🔖 Read here on MeriTalk: https://hubs.li/Q03L66J-0 🇺🇸 #ClarotyFederal #Federal #CPS #OT #IoT #BMS #FRCS #IT #DOD #NIST #JRSS #missionenclave #ZeroTrust #defense #government

🌍 New blog out – From the battlefield to cyberspace: Cybersecurity in defense The global defense cybersecurity market is set to grow by 285%, reaching USD 63.38B by 2032. 📈 Why? From drones and robotics to IoT platforms, militaries are becoming increasingly digital – and therefore more vulnerable. At the same time, nation-state cyberattacks are targeting not only defense systems, but also finance, healthcare, and power grids. With #SCION, the defense sector can achieve: ✅ Data sovereignty & compliance with geofencing ✅ Cyber resilience with redundant connectivity and no vendor lock-in risk ✅ Reduced attack surface (adversaries can’t attack what they can’t see) 👉 Read the blog by our CRO, Dario Colacicco, “Cybersecurity in defense: Protecting critical defense and military systems with SCION,” here: https://lnkd.in/efYECTtJ #cybersecurity #defencesector #cyberresilience #datasovereignty #criticalinfrastructure

A thought crossed my mind while flying to Adelaide — a reminder of how critical it is not to overlook or underestimate serious threats. In cybersecurity, the same thing happens every day. We often focus on what’s visible and miss what’s quietly sitting in the background — the unmanaged, unmonitored, or forgotten devices that pose the real risk. During WWII, more than 1,000 sailors remained inside the USS Arizona at Pearl Harbour. Many of us remember that scene — radar operators had detected the incoming formation, but it was dismissed as friendly aircraft returning from the mainland. The signs were there, but they were ignored. Imagine a cyber resilience platform that identifies every device — managed or unmanaged — across IT, IoT, and OT environments. It tells you what type of device it is, what firmware it’s running, when it was last updated, who it’s communicating with, and where vulnerabilities exist. That’s exposure management in action — ensuring nothing slips through undetected. Just like Pearl Harbour’s radar warning, visibility means nothing if it’s ignored. The key is seeing everything, understanding the context, and acting at the right time. CyberCon is happening this week — happy to connect over coffee or a beer to chat about exposure-driven resilience and how not to miss the next radar blip. https://lnkd.in/guxNTjb4 https://lnkd.in/gDMJqnJH

A driver terminal of an agricultural or construction machine contains a hardware-security module (HSM), firewall, 5G modem, iMX8M SoC, U-Boot, Linux and embedded browser. These components are critical and important (Class I and II) products with digital elements according to the EU Cyber Resilience Act (EU CRA). Does this make the driver terminal an important or critical product? No, it doesn't! The driver terminal is still a default product, because it does not (!) have the core functionality of any of the important or critical products (see Articles 7(2) and 8(2) of the EU CRA). Hence, almost all machines (e.g., harvesters, excavators, packaging machines) and composite devices (e.g., operator terminals, ECUs, telematics units) will be default products. Manufacturers will have to do a self assessment, no notified bodies involved. I am writing this, because ETSI published draft versions of the vertical harmonised standards for some important products: https://lnkd.in/dtHhArHY. These drafts can give manufacturers a good idea which security measures are good enough for default products. #eucra #cyberresilience #cybersecurity #iot

Just finished reviewing the key insights from the Kaspersky Industrial Cybersecurity Conference (KICConf) 2025. Three major shifts stood out: 🔹 Supply Chain Escalation Threat actors are extending their reach beyond IT into industrial components and trusted vendor ecosystems, making supply chain resilience more critical than ever. 🔹 The AI/OT Tightrope AI adoption is transforming industrial processes, but it also introduces complex risks. Adversaries are already probing these AI-driven systems. 🔹 The Legacy Paradox Aging systems such as Industrial IoT and telecom infrastructure continue to serve vital functions but remain difficult to secure, creating high-impact vulnerabilities. For anyone safeguarding industrial operations, these themes are essential learning. Catch the session recordings and reports here: 🔗 https://lnkd.in/grSKKwzg #IndustrialCybersecurity #OTSecurity #KICConf #CriticalInfrastructure #SupplyChainRisk #CyberResilience

Interesting security-minded article addressing IT/OT convergence in the Industrial sector: '87% increase in ransomware attacks against industrial organizations, with manufacturing the hardest-hit sector.' https://lnkd.in/e2qJhypu

https://lnkd.in/gDt9nrD4 The RondoDox botnet is rewriting the rules of IoT exploitation. Instead of chasing new zero-days, it weaponizes dozens of older vulnerabilities across cameras, NVRs, and edge devices — launching mass attacks faster than defenders can patch. This “exploit-shotgun” model shows that in 2025, the biggest threat isn’t novelty — it’s exposure. 👉 Devices online without segmentation. 👉 Missed firmware patches. 👉 Forgotten cameras and access controllers that quietly stay vulnerable. For physical security teams, this reinforces a critical point: Resilience isn’t built by chasing the next exploit — it’s earned by hardening what’s already deployed. Patch fast. Segment aggressively. Audit everything with an IP address....be safe out there #CyberPhysicalSecurity #IoTSecurity #ThreatIntelligence #CCTV #SecurityLeadership #RondoDox #RiskResilience

🇺🇸🔐🛰️ A US Army memo has flagged several security and oversight concerns in the Next Generation Command and Control (NGC2) platform prototype, Reuters reported. The evaluation follows a nearly $100-million contract awarded to defense contractor Anduril Industries to develop the system, in partnership with Palantir, Microsoft, and several smaller firms. The memo was part of a broader review to identify and mitigate cybersecurity vulnerabilities in NGC2, which is designed to connect soldiers, sensors, vehicles, and commanders through real-time data sharing.

Salt Typhoon's success is inspiring copycat attackers to exploit "platforms that traditionally don't have EDR"—and IoT devices are the perfect target. The lateral movement blueprint: - Compromise unmonitored IoT devices (cameras, sensors, printers) - Leverage their trusted network access - Operate in log-blind zones - Use legitimate admin tools While organizations have hardened traditional endpoints, IoT ecosystems remain largely unprotected. These devices become ideal stepping stones—they're trusted by the network but lack comprehensive logging, EDR protection, and segmentation. The question: Is your organization prepared when IoT becomes the highway for lateral movement? https://lnkd.in/eMG3ZTFM

The automotive industry—deeply reliant on Internet of Things (IoT) technology, wireless connectivity, and increasingly powered by AI, has faced some of the most disruptive cyberattacks in recent years.