Andrew Ginter, Author at Waterfall Security Solutions

OT Security blog post about how likely a security flaw might end up unaliving someone

How Likely Is That To Kill Anyone?

IT teams newly responsible for OT security are often appalled with the results of an initial vulnerability assessment. “Patch everything! Patch it now!” is often the directive issued to engineering teams. The correct response to such a directive is “How likely is that to kill anyone?” Engineering teams cannot proceed with any change to a system until they have a clear understanding of the answer. And the answer is almost never “zero likelihood.”

September 26, 2024

Cybersecurity Approaches Unique to OT Security

The engineering profession has powerful tools to address physical risk, tools that should be applied to OT cyber risks much more routinely than they are today. For example: mechanical over-pressure relief valves prevent boilers from exploding for any reason, cyber attack or otherwise. These powerful tools are too often neglected for cyber threats because they have no analogue in IT security – they not even mentioned in most cybersecurity standards, regulations and advice.

August 15, 2024

Hardware enforced remote access for OT - UNDER THE HOOD

Hardware-Enforced Remote Access (HERA) – Under the Hood

Waterfall’s HERA is a true interactive OT remote access with unidirectional protection for OT. How does it work?

July 17, 2024

Remote Access Vulnerabilities and a Hardware-Enforced Solution

Remote access for OT is vital for maintaining efficiencies, troubleshooting, and is also important for retaining remote workers. But most remote access solutions pose a range of security risks. We introduce HERA – Hardware-Enforced Remote Access – as a safer alternative.

July 16, 2024

Oil and Gas protection against ransomware

Upstream / Midstream / Downstream Cyber Attacks – Dependency Analysis

It turns out that there are really only three ways that ransomware can shut down OT networks and physical operations: “abundance of caution” shutdowns, OT dependencies on IT systems and services, and ransomware impacting OT networks and systems directly.

July 9, 2024

40 Years Deploying Cyber Targets

For forty years now, we have automated physical operations with computers in the name of increased operating efficiencies – deploying ever more targets for cyber attacks.

June 10, 2024

Abstraction for Safe Closed-Loop Control by Cloud Systems in Mining

What happens when we close the loop in mining operations? How can we prevent Internet-exposed services being compromised?

May 23, 2024

What is OT Anyway?

Engineers have very recently started to use the “OT” term, primarily when interacting with enterprise security teams. Engineers use the term to refer to the computers and networks that control important, complex, and often dangerous physical processes

April 2, 2024

OT Cybersecurity: Can the Government Save Us?

Governments play an important role in OT security: they educate, they share threat information, they vet our employees and other trusted insiders, and from time to time they legislate cybersecurity defenses that the most consequential industrial enterprises must implement.

March 21, 2024

are we still trying to protect industrial information

OT Security: Are We Protecting the Information?

Industrial network engineers have always been uneasy with the task of “protecting information”. The real priority for OT security is in stopping inbound malicious information from entering the system and threatening machinery and workers.

March 7, 2024

Next generation Secure
Remote Access

Unlimited Access to
OT data

Author: Andrew Ginter

How Likely Is That To Kill Anyone?

Cybersecurity Approaches Unique to OT Security

Hardware-Enforced Remote Access (HERA) – Under the Hood

Remote Access Vulnerabilities and a Hardware-Enforced Solution

Upstream / Midstream / Downstream Cyber Attacks – Dependency Analysis

40 Years Deploying Cyber Targets

What is OT Anyway?

OT Cybersecurity: Can the Government Save Us?

OT Security: Are We Protecting the Information?

Solutions

Solutions (By Industry)

Solutions (I need to)

Technology

OT Insights Center

About Waterfall

Partners