When we make decisions about other people's safety, we have ethical and often legal obligations to make reasonable…

The most recent CISA, CCCS et al alert / advice on pro-Russian hacktivists targeting critical infrastructures is a…

In many organizations the relationship between IT/enterprise security and OT/engineering teams is dysfunctional. These teams work in the…

"We have new intel. The threat has changed, the probability has changed, the impact has changed, whatever it…

"I would estimate that somewhere between 30 and 50% of medical devices that are submitted to FDA today…

Hardware Hacking - Essential OT Attack Knowledge | Episode 145Please note: This transcript was auto-generated and then edited…

Watch the webinar for a comprehensive review of the cyber incidents that shaped the industrial landscape in 2025.…

The manufacturing sector stands at a critical inflection point as digital transformation reshapes production environments worldwide. While smart…

When we make decisions about other people's safety, we have ethical and often legal obligations to make reasonable…

The most recent CISA, CCCS et al alert / advice on pro-Russian hacktivists targeting critical infrastructures is a…

The manufacturing sector stands at a critical inflection point as digital transformation reshapes production environments worldwide. While smart…

The oil and gas industry faces a complex maze of cybersecurity challenges as digital transformation continues to reshape…

When you're protecting operational technology infrastructure, the security solution you pick could mean the difference between weathering a…

By Andrew Ginter, VP Industrial Security, Waterfall Security Stuff wears out. Friction is the enemy of moving parts…

Securing industrial remote access is no longer optional—it's essential for protecting operations, maintaining uptime, and safeguarding critical infrastructure.…

Securing SCADA systems is no longer optional—it's a critical requirement for protecting industrial operations, critical infrastructure, and public…

The oil and gas industry faces a complex maze of cybersecurity challenges as digital transformation continues to reshape…

When you're protecting operational technology infrastructure, the security solution you pick could mean the difference between weathering a…

By Andrew Ginter, VP Industrial Security, Waterfall Security Stuff wears out. Friction is the enemy of moving parts…

Operational Technology (OT) refers to the hardware and software systems that control and monitor physical devices and processes…

The new 2023 OT Cyber Threats Report is available – a collaboration between Waterfall Security Solutions and ICSSTRIVE.…

The Network and Information Systems Directive (NIS2) primarily focuses on information technology (IT) and addresses the protection of…

This is the second blog in the series, following Segmentation 201: Unidirectional Gateways vs. Firewalls. Unidirectional architectures are…

OT SYSTEMS ARE INCREASINGLY JUST AS EXPOSED TO ATTACKS AS IT SYSTEMS The increase in digitalization, automation, cloud…

When we make decisions about other people's safety, we have ethical and often legal obligations to make reasonable…

The most recent CISA, CCCS et al alert / advice on pro-Russian hacktivists targeting critical infrastructures is a…

Securing industrial remote access is no longer optional—it's essential for protecting operations, maintaining uptime, and safeguarding critical infrastructure.…

Securing SCADA systems is no longer optional—it's a critical requirement for protecting industrial operations, critical infrastructure, and public…

Ready to strengthen your industrial network’s defense without compromising operational integrity? Waterfall Security Solutions offers proven, non-intrusive security…

In today’s interconnected industrial landscape, the security of ICS and SCADA systems is more critical than ever. From…

Before making a decision, assess your organization’s:Risk toleranceOperational requirementsRegulatory obligationsLong-term scalability goalsIn some cases, a hybrid architecture may…

The industrial landscape is changing rapidly. Companies that choose flexible, scalable, and secure ICS solutions today will lead…

Remote access is essential—but traditional solutions like VPNs and jump hosts are increasingly under fire from both attackers…

Firewalls are almost always the second technical step taken to secure industrial / OT automation systems. But how…

This comprehensive guide cuts through the complexity to deliver practical insights on the full spectrum of cross-domain solutions.…

Attackers often target industrial systems through bi-directional communication channels. That's why understanding how to effectively implement one-way data…

Sharp Rise in Affected Sites: While the overall increase in attacks slowed, their reach expanded dramatically – by…

Appendix A, at the end of the Threat Report, also includes the entire dataset used for the report…

Download your copy today and learn how to fully secure government networks against all remote cyber threats including…

Fill out the form and get your copy today.

Click to enlarge

100% Security: With Unidirectional Security Gateways, the PI Production Server is now physically protected from any threats emanating…

Cyber Threats To The Mining Industry

Click to enlarge

100% Security: With Unidirectional Security Gateways, the PI Production Server is now physically protected from any threats emanating…

Cyber Threats To The Mining Industry

Remote access is essential—but traditional solutions like VPNs and jump hosts are increasingly under fire from both attackers…

Firewalls are almost always the second technical step taken to secure industrial / OT automation systems. But how…

This comprehensive guide cuts through the complexity to deliver practical insights on the full spectrum of cross-domain solutions.…

Attackers often target industrial systems through bi-directional communication channels. That's why understanding how to effectively implement one-way data…

Sharp Rise in Affected Sites: While the overall increase in attacks slowed, their reach expanded dramatically – by…

Appendix A, at the end of the Threat Report, also includes the entire dataset used for the report…

Download your copy today and learn how to fully secure government networks against all remote cyber threats including…

Fill out the form and get your copy today.

2024 had more than its fair share of cyberattacks on OT systems. This infographic helps map out the…

2023 saw an uptick of cyberattacks across many industries. Our infographic focuses on cyberattacks in 2023 that impacted…

As part of the Whitehouse’s broader efforts to protect American infrastructure from attacks by nation-states and other cyber…

Cyber Attacks On Critical InfrastructureInfographicLooking to stay informed about the latest cyber attacks on critical infrastructure?Our exclusive infographic…

2024 had more than its fair share of cyberattacks on OT systems. This infographic helps map out the…

2023 saw an uptick of cyberattacks across many industries. Our infographic focuses on cyberattacks in 2023 that impacted…

In 2024 alone, researchers discovered as many new OT-capable malware families (3) as were found in the previous…

Firewalls are almost always the second technical step taken to secureindustrial / OT automation systems. But how much…

With the NIS 2 Directive and the Cyber Resilience Act (CRA), cybersecurity requirements are increasing for critical infrastructures…

We hope you can watch the webinar.

Provide an overview of the current landscape of solutions and needs.Recommend a decision process – how to gather…

In 2024, there was 146% increase in the number of sites impacted by cyberattacks targeting heavy industry.The Waterfall…

If we implement the highest 62443 SL4 throughout, have we addressed all credible threats? Do we need strong…

We measure the strength of a security program by the attacks the program defeats with a high degree…

"I would estimate that somewhere between 30 and 50% of medical devices that are submitted to FDA today…

Hardware Hacking - Essential OT Attack Knowledge | Episode 145Please note: This transcript was auto-generated and then edited…

Managing Risk with Digital Twins - What Do We Do Next? | Episode 144Please note: This transcript was…

Transcript of I don't sign s**t | Episode 143Please note: This transcript was auto-generated and then edited by a…

“So NIS2 is focusing on cybersecurity of entities, and the CRA is focusing on cybersecurity for products with…

“We abstract the policy from the network infrastructure such that you can have a group of devices or…

“Large scale destructive attacks on big machinery is, not something that I would consider a credible attack.” -…

If you didn't listen to a single thing I said, you can listen to these three things: collaborate,…

In this episode, Rick Kaun, the VP of Solutions at Verve Industrial Protection, takes us deep into the world of…

In this episode, Dr. Ken Tindell, the CTO at Canis, joins us to talk about cybersecurity and cars. Modern cars…

In this episode, Kathryn Wagner, the Vice President, Industry Solutions, Energy & Utilities at Assurx, joins us to explore the…

In this episode, Dr. Janaka Ruwanpura, Vice-Provost, University of Calgary joins us to look at where cyber risks…

In this episode, Rob Labbé from Mining and Metals ISAC explains how and why risk assessments are needed and…

The Biden-Harris administration recently released their National Cybersecurity Strategy. This week, Jesus Molina of Waterfall Security joined ICS…

Stakeholder-specific vulnerability categorization (SSVC) is a new alternative to the common vulnerability scoring system (CVSS) used in the…

Industrial cybersecurity workforce gaps are not all the same. Different kinds of organizations in different stages of their…

"I would estimate that somewhere between 30 and 50% of medical devices that are submitted to FDA today…

Hardware Hacking - Essential OT Attack Knowledge | Episode 145Please note: This transcript was auto-generated and then edited…

Managing Risk with Digital Twins - What Do We Do Next? | Episode 144Please note: This transcript was…

Transcript of I don't sign s**t | Episode 143Please note: This transcript was auto-generated and then edited by a…

“So NIS2 is focusing on cybersecurity of entities, and the CRA is focusing on cybersecurity for products with…

“We abstract the policy from the network infrastructure such that you can have a group of devices or…

“Large scale destructive attacks on big machinery is, not something that I would consider a credible attack.” -…

“Trying to build a vulnerability management program when you don't know what's out there is a fool's errand...you're…

In 2024 alone, researchers discovered as many new OT-capable malware families (3) as were found in the previous…

Firewalls are almost always the second technical step taken to secureindustrial / OT automation systems. But how much…

With the NIS 2 Directive and the Cyber Resilience Act (CRA), cybersecurity requirements are increasing for critical infrastructures…

We hope you can watch the webinar.

Provide an overview of the current landscape of solutions and needs.Recommend a decision process – how to gather…

In 2024, there was 146% increase in the number of sites impacted by cyberattacks targeting heavy industry.The Waterfall…

If we implement the highest 62443 SL4 throughout, have we addressed all credible threats? Do we need strong…

We measure the strength of a security program by the attacks the program defeats with a high degree…

Last March Waterfall Security Solutions participated in one of the important events at UAE - GISEC. Naoufal Kerboute,…

Last March Waterfall Security Solutions participated in one of the important events at UAE - GISEC. Andrew Ginter,…

https://www.youtube.com/watch?v=i9oEDAYrI-o&t=17s&ab_channel=WaterfallSecuritySolutions THE INDUSTRIAL SECURITY INSTITUTE OT / industrial / ICS cybersecurity concepts from the perspective of the world’s…

https://youtu.be/uzlk7mTxilk SUBSCRIBE Free Book PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE Free Book Andrew Ginter's Book Secure Operations Technology Get…

https://youtu.be/1IJ9OjV8VzQ SUBSCRIBE MORE PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE Next EPS. The Top 20 Cyber Attacks on ICS THE…

https://youtu.be/DHiu_n9NOak SUBSCRIBE MORE PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE Next EPS. The Top 20 Cyber Attacks on ICS THE…

https://youtu.be/Nw8NR4rIE0g SUBSCRIBE MORE PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE Next EPS. The Top 20 Cyber Attacks on ICS THE…

https://www.youtube.com/watch?v=xYAWsteeOLM SUBSCRIBE MORE PREVIOUS EPS. PREVIOUS EPS. SUBSCRIBE Next EPS. The Top 20 Cyber Attacks on ICS THE…

Safety is the top priority in almost all mines, and reliable, efficient physical operations are close seconds. Cybersecurity…

The new Waterfall Security / ICSStrive Threat Report documents 68 cyber attacks with real-world physical consequences impacting 515…

Integrating OT with IT introduces new threats to the reliability of existing operations. Connected networks move more than…

In this recorded webinar, we take an in-depth look at the European NIS2 Directive and help explain…

In this webinar recording, we take an in-depth look at the most novel, notorious, and impactful cyber…

Want to get your advanced copy of Andrew Ginter's new book? >>Click here to get your copy

Engineering-grade solutions are deterministic and predictable. Cyber-Informed Engineering (CIE) is exploring safety engineering, protection engineering and other engineering…

Our Webinar with Andrew Ginter of Waterfall Security Solutions and Bill McEvoy of AVEVA covered many facets of…

Watch the webinar for a comprehensive review of the cyber incidents that shaped the industrial landscape in 2025.…

In 2024 alone, researchers discovered as many new OT-capable malware families (3) as were found in the previous…

Firewalls are almost always the second technical step taken to secureindustrial / OT automation systems. But how much…

With the NIS 2 Directive and the Cyber Resilience Act (CRA), cybersecurity requirements are increasing for critical infrastructures…

We hope you can watch the webinar.

Provide an overview of the current landscape of solutions and needs.Recommend a decision process – how to gather…

In 2024, there was 146% increase in the number of sites impacted by cyberattacks targeting heavy industry.The Waterfall…

If we implement the highest 62443 SL4 throughout, have we addressed all credible threats? Do we need strong…

With the NIS 2 Directive and the Cyber Resilience Act (CRA), cybersecurity requirements are increasing for critical infrastructures…

Software-based remote access — VPNs, 2FA, firewalls, jump hosts, and more all have vulnerabilities and potential zero-days that…

Understanding threats is essential to designing effective defenses. We invite you to join Andrew Ginter, Rees Machtemes and…

Register to join our upcoming webinar as Dr. Jesus Molina takes us through the ins-and-outs of the…

Join our webinar for an in-depth look at the most novel, notorious and impactful cyber incidents of…

Join our webinar to learn about engineering-grade OT security, a new model for cyber risk, and how…

Join our next webinar on October 3, 11 am New York time/ 8 am Pacific Time Engineering-grade…