andrew ginter Archives - Waterfall Security Solutions

OT Security blog post about how likely a security flaw might end up unaliving someone

How Likely Is That To Kill Anyone?

IT teams newly responsible for OT security are often appalled with the results of an initial vulnerability assessment. “Patch everything! Patch it now!” is often the directive issued to engineering teams. The correct response to such a directive is “How likely is that to kill anyone?” Engineering teams cannot proceed with any change to a system until they have a clear understanding of the answer. And the answer is almost never “zero likelihood.”

September 26, 2024

Hitting Tens of Thousands of Vehicles At Once | Episode 131

Compromise a cloud service and tens thousands of vehicles can be affected all at once. Matt MacKinnon of Upstream Security walks us through the world of cloud security for connected vehicles, transport trucks, tractors, and other “stuff that moves.”

September 26, 2024

OT Security podcast episode 130 - Andrew Ginter and Nate

AI Takes on Polymorphic Malware | Episode 130

Gary Southwell of Aria Cyber joins us on The Industrial Security Podcast as we have a look at using AI to get ahead of constantly-changing malware.

September 10, 2024

Webinar: Industry-Specific 62443 Insights for Power Generation

An in-depth webinar that goes beyond the buzzwords and provides practical, industry-specific guidance on applying the ISA/IEC 62443 standards to safeguard critical power infrastructure

August 29, 2024

Adapting IT Advice for OT podcast episode 129

New Resource: Adapting IT Advice for OT | Episode 129

Jack Bliss of 1898 & Co. has adapted the CIS Top-18 list for OT/industrial, adding a lot of industrial context and lists of related OT-centric tools and technology.

August 25, 2024

Oil and Gas protection against ransomware

Upstream / Midstream / Downstream Cyber Attacks – Dependency Analysis

It turns out that there are really only three ways that ransomware can shut down OT networks and physical operations: “abundance of caution” shutdowns, OT dependencies on IT systems and services, and ransomware impacting OT networks and systems directly.

July 9, 2024

Webinar Recording: Cyber-securing Safety and Equipment Protection Systems in Mining

Cyber-Informed Engineering (CIE) offers a new engineering-friendly approach to understanding and addressing cyber threats that have the potential to impair worker safety and damage long-lead-time equipment in Mining & Metals operations.

May 30, 2024

Abstraction for Safe Closed-Loop Control by Cloud Systems in Mining

What happens when we close the loop in mining operations? How can we prevent Internet-exposed services being compromised?

May 23, 2024

Susan Farrell joins to discuss weaknesses vs vulnerabilities

CWE for Zero Days – not CVE | Episode 126

The Mitre CWE – Common Weakness Enumeration is database talks about kinds of problems that can show up in the future – future zero days – rather than CVE that talks about what vulnerabilities were discovered in the past. Susan Farrell walks us through the CWE and how both vendors and owners and operators use it.

May 19, 2024

Webinar Recording: Cyber Attacks with Physical Consequences – 2024 Threat Report

Webinar recording of a deep dive into the details of OT cyberattacks from our 2024 Threat Report.

April 14, 2024

Next generation Secure
Remote Access

Unlimited Access to
OT data

Tag: andrew ginter

How Likely Is That To Kill Anyone?

AI Takes on Polymorphic Malware | Episode 130

Webinar: Industry-Specific 62443 Insights for Power Generation

New Resource: Adapting IT Advice for OT | Episode 129

Upstream / Midstream / Downstream Cyber Attacks – Dependency Analysis

Webinar Recording: Cyber-securing Safety and Equipment Protection Systems in Mining

CWE for Zero Days – not CVE | Episode 126

Webinar Recording: Cyber Attacks with Physical Consequences – 2024 Threat Report

Solutions

Solutions (By Industry)

Solutions (I need to)

Technology

OT Insights Center

About Waterfall

Partners