Sharp Rise in Affected Sites: While the overall increase in attacks slowed, their reach expanded dramatically – by…

In 2024, there was 146% increase in the number of sites impacted by cyberattacks targeting heavy industry.The Waterfall…

This first Level Zero will highlight innovation, emphasize critical insights, socialize what works, and connect people to cooperate.I've…

“With digital transformation there's a lot of possible new cyber threats to the existing infrastructure and architectures of…

“When physical processes are controlled by computers, if there's a mistake, there's a physical outcome and people are…

“Budgeting for OT cybersecurity shouldn't be an afterthought for a capital project. Trying to integrate it into the…

Discover how the rise of industrial control systems (ICS) and programmable logic controllers (PLCs) in the 1960s and…

If we implement the highest 62443 SL4 throughout, have we addressed all credible threats? Do we need strong…

By understanding the tactics and targets of 2024's attacks, we can refine our OT security strategies for 2025.…

This is the inaugural Level Zero OT Cyber Security 2025 Conference – an event people will talk about…

We can debate whether threats are credible and whether we should spend money and effort addressing credible residual…

In this digital age, ensuring the security of critical infrastructure is not just an operational necessity—it is a…

So, to summarize, OT begins at the consequence boundary. The place along the entire network where the consequences…

These are my top 3. If you would like to see even more of our videos, I encourage…

Episode #131: Hitting Tens of Thousands of Vehicles At Once with Matt MacKinnonIn this episode, Matt MacKinnon, Head…

Collaboration between OT, IT, and security teams ensures aligned strategies and shared ownership of cybersecurity protocols. Approaches such…

The new 2023 OT Cyber Threats Report is available – a collaboration between Waterfall Security Solutions and ICSSTRIVE.…

The Network and Information Systems Directive (NIS2) primarily focuses on information technology (IT) and addresses the protection of…

This is the second blog in the series, following Segmentation 201: Unidirectional Gateways vs. Firewalls. Unidirectional architectures are…

OT SYSTEMS ARE INCREASINGLY JUST AS EXPOSED TO ATTACKS AS IT SYSTEMS The increase in digitalization, automation, cloud…

The first face-to-face CISA / JCDC ICSJWG event is running in Salt Lake City May 9-11. I am…

Air gaps are confusing – a significant minority of practitioners use the term “air gap” in a way…

The Hospital Clinic in Barcelona recently suffered a ransomware cyberattack. This ransomware affected the services of the 819-bed…

From IT security inspiration to OT security innovation, we are living in the OT security revolution. In recent…

By understanding the tactics and targets of 2024's attacks, we can refine our OT security strategies for 2025.…

This is the inaugural Level Zero OT Cyber Security 2025 Conference – an event people will talk about…

We can debate whether threats are credible and whether we should spend money and effort addressing credible residual…

In this digital age, ensuring the security of critical infrastructure is not just an operational necessity—it is a…

So, to summarize, OT begins at the consequence boundary. The place along the entire network where the consequences…

These are my top 3. If you would like to see even more of our videos, I encourage…

Episode #131: Hitting Tens of Thousands of Vehicles At Once with Matt MacKinnonIn this episode, Matt MacKinnon, Head…

Collaboration between OT, IT, and security teams ensures aligned strategies and shared ownership of cybersecurity protocols. Approaches such…

Appendix A, at the end of the Threat Report, also includes the entire dataset used for the report…

Download your copy today and learn how to fully secure government networks against all remote cyber threats including…

Fill out the form and get your copy today.

  Two cyberattacks that bankrupted the targeted organization  An attack that resulted in a fire that damaged equipment…

  Define what is a firewall  Review firewall principles  Introduce Unidirectional Gateways Compare the effectiveness of these two…

Fill out the form and get your copy today.

2021 Data OT Outages​Ransomware Consequences​Future Recommendations​Conclusions​

  The Problem with Firewalls & DMZ Configurations  Security for AVEVA PI & Data Hub Installations  The Unidirectional…

Click to enlarge

100% Security: With Unidirectional Security Gateways, the PI Production Server is now physically protected from any threats emanating…

Cyber Threats To The Mining Industry

Click to enlarge

100% Security: With Unidirectional Security Gateways, the PI Production Server is now physically protected from any threats emanating…

Cyber Threats To The Mining Industry

Appendix A, at the end of the Threat Report, also includes the entire dataset used for the report…

Download your copy today and learn how to fully secure government networks against all remote cyber threats including…

Fill out the form and get your copy today.

  Two cyberattacks that bankrupted the targeted organization  An attack that resulted in a fire that damaged equipment…

  Define what is a firewall  Review firewall principles  Introduce Unidirectional Gateways Compare the effectiveness of these two…

Fill out the form and get your copy today.

2021 Data OT Outages​Ransomware Consequences​Future Recommendations​Conclusions​

  The Problem with Firewalls & DMZ Configurations  Security for AVEVA PI & Data Hub Installations  The Unidirectional…

2024 had more than its fair share of cyberattacks on OT systems. This infographic helps map out the…

2023 saw an uptick of cyberattacks across many industries. Our infographic focuses on cyberattacks in 2023 that impacted…

As part of the Whitehouse’s broader efforts to protect American infrastructure from attacks by nation-states and other cyber…

Cyber Attacks On Critical Infrastructure Infographic Looking to stay informed about the latest cyber attacks on critical infrastructure?…

Sophisticated, targeted ransomware attacks shutting down OT systems and critical infrastructure have gained considerable momentum in recent years.…

Sophisticated, targeted ransomware attacks shutting down OT systems and critical infrastructure have gained considerable momentum in recent years.…

2024 had more than its fair share of cyberattacks on OT systems. This infographic helps map out the…

2023 saw an uptick of cyberattacks across many industries. Our infographic focuses on cyberattacks in 2023 that impacted…

“When physical processes are controlled by computers, if there's a mistake, there's a physical outcome and people are…

“Budgeting for OT cybersecurity shouldn't be an afterthought for a capital project. Trying to integrate it into the…

Deloitte is one of the "Big Four" accounting firms and a global leader in professional services, offering expertise…

DeviceTotal offers the world's first agentless solution to detect and eliminate vulnerabilities and risks in OT, IoT, network,…

Dr. Tomomi Aoyama is a distinguished figure in the field of industrial cybersecurity, currently serving as Private SaaS…

Matt MacKinnon handles Global Strategic Alliances at Upstream Security. Matt is an accomplished manager with success in leading…

Gary Southwell is a cybersecurity veteran who worked on deploying some of the first Checkpoint firewalls back in…

Jack Bliss is a motivated cybersecurity consultant that enjoys working with others to achieve common goals. Experience with…

In this episode, Dr. Ken Tindell, the CTO at Canis, joins us to talk about cybersecurity and cars. Modern cars…

In this episode, Kathryn Wagner, the Vice President, Industry Solutions, Energy & Utilities at Assurx, joins us to explore the…

In this episode, Dr. Janaka Ruwanpura, Vice-Provost, University of Calgary joins us to look at where cyber risks…

In this episode, Rob Labbé from Mining and Metals ISAC explains how and why risk assessments are needed and…

The Biden-Harris administration recently released their National Cybersecurity Strategy. This week, Jesus Molina of Waterfall Security joined ICS…

Stakeholder-specific vulnerability categorization (SSVC) is a new alternative to the common vulnerability scoring system (CVSS) used in the…

Industrial cybersecurity workforce gaps are not all the same. Different kinds of organizations in different stages of their…

Cyber Informed Engineering – the new US DOE Strategy includes unhackable safeties, manual operations, and other engineering-grade protections,…

“When physical processes are controlled by computers, if there's a mistake, there's a physical outcome and people are…

“Budgeting for OT cybersecurity shouldn't be an afterthought for a capital project. Trying to integrate it into the…

Deloitte is one of the "Big Four" accounting firms and a global leader in professional services, offering expertise…

DeviceTotal offers the world's first agentless solution to detect and eliminate vulnerabilities and risks in OT, IoT, network,…

Dr. Tomomi Aoyama is a distinguished figure in the field of industrial cybersecurity, currently serving as Private SaaS…

Matt MacKinnon handles Global Strategic Alliances at Upstream Security. Matt is an accomplished manager with success in leading…

Gary Southwell is a cybersecurity veteran who worked on deploying some of the first Checkpoint firewalls back in…

Jack Bliss is a motivated cybersecurity consultant that enjoys working with others to achieve common goals. Experience with…

If we implement the highest 62443 SL4 throughout, have we addressed all credible threats? Do we need strong…

We measure the strength of a security program by the attacks the program defeats with a high degree…

As 2024 winds down, we wrap up and discuss the year’s most important cyber incidents that targeted physical…

Watch the webinar for a look into the recent evolution of OT security standards. There are some common…

Watch the insightful webinar where we delve into the rapidly evolving landscape of OT remote access. With the…

Software-based remote access — VPNs, 2FA, firewalls, jump hosts, and more all have vulnerabilities and potential zero-days that…

Large water utilities are looking to gain efficiencies by adopting new distributed edge devices and digital transformation initiatives…

Safety is the top priority in almost all mines, and reliable, efficient physical operations are close seconds. Cybersecurity…

Managing OT cyber risk is more than cybersecurity - an IT-SEC only approach ignores powerful engineering tools for…

Industrial cyber attacks leading to production downtime and other physical consequences more than doubled in 2021 over 2020.…

Last March Waterfall Security Solutions participated in one of the important events at UAE - GISEC. Naoufal Kerboute,…

Last March Waterfall Security Solutions participated in one of the important events at UAE - GISEC. Andrew Ginter,…

Watch highlights from an interview by Ran Pedhazur, Chief Business Development Officer at Waterfall, and Nicolai Solling, Chief…

https://www.youtube.com/watch?v=nGJaJnXPZdc eBook | Firewalls vs. Unidirectional Gateways

https://www.youtube.com/watch?v=UkYCFBy_9Q0&ab_channel=WaterfallSecuritySolutions SUBSCRIBE NEXT EPS. PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE NEXT EPS. Free consultation with Unidirectional solutions architect CONTACT…

https://www.youtube.com/watch?v=i9oEDAYrI-o&t=17s&ab_channel=WaterfallSecuritySolutions THE INDUSTRIAL SECURITY INSTITUTE OT / industrial / ICS cybersecurity concepts from the perspective of the world’s…

Safety is the top priority in almost all mines, and reliable, efficient physical operations are close seconds. Cybersecurity…

The new Waterfall Security / ICSStrive Threat Report documents 68 cyber attacks with real-world physical consequences impacting 515…

Integrating OT with IT introduces new threats to the reliability of existing operations. Connected networks move more than…

In this recorded webinar, we take an in-depth look at the European NIS2 Directive and help explain…

In this webinar recording, we take an in-depth look at the most novel, notorious, and impactful cyber…

Want to get your advanced copy of Andrew Ginter's new book? >>Click here to get your copy

Engineering-grade solutions are deterministic and predictable. Cyber-Informed Engineering (CIE) is exploring safety engineering, protection engineering and other engineering…

Our Webinar with Andrew Ginter of Waterfall Security Solutions and Bill McEvoy of AVEVA covered many facets of…

Software-based remote access — VPNs, 2FA, firewalls, jump hosts, and more all have vulnerabilities and potential zero-days that…

Understanding threats is essential to designing effective defenses. We invite you to join Andrew Ginter, Rees Machtemes and…

Register to join our upcoming webinar as Dr. Jesus Molina takes us through the ins-and-outs of the…

Join our webinar for an in-depth look at the most novel, notorious and impactful cyber incidents of…

Join our webinar to learn about engineering-grade OT security, a new model for cyber risk, and how…

Join our next webinar on October 3, 11 am New York time/ 8 am Pacific Time Engineering-grade…

Software-based remote access — VPNs, 2FA, firewalls, jump hosts, and more all have vulnerabilities and potential zero-days that…

Understanding threats is essential to designing effective defenses. We invite you to join Andrew Ginter, Rees Machtemes and…

Register to join our upcoming webinar as Dr. Jesus Molina takes us through the ins-and-outs of the…

Join our webinar for an in-depth look at the most novel, notorious and impactful cyber incidents of…

Join our webinar to learn about engineering-grade OT security, a new model for cyber risk, and how…

Join our next webinar on October 3, 11 am New York time/ 8 am Pacific Time Engineering-grade…