Content Category: Podcast

If you can touch it, you can hack it, usually. And having hacked it, you can often more easily find exploitable vulnerabilities. Marcel Rick-Cen of Foxgrid walks us through the basics of hacking industrial hardware and software systems.

How can we USE this information to make useful decisions about next steps to address cyber risk? Vivek Ponada of Frenos joins us to explore a new kind of OT / industrial digital twin – grab all that data and work it to draw useful conclusions.

Tim McCreight of TaleCraft Security in his (coming soon) book “I don’t sign s**t” uses story-telling to argue that front line security leaders should not be accepting multi-billion dollar risks on behalf of the business. We need to escalate those decisions – with often surprising results when we do.

NIS2 legislation is late in many EU countries, and the new CRA applies to most suppliers of industrial / OT computerized and software products to the EU. Christina Kieffer, attorney at reuschlaw, walks us through what’s new and what it means for vendors, as well as for owner / operators.

Hundreds of subsystems with the same IP addresses? Thousands of legacy devices with no modern encryption or other security? Constant, acquisitions of facilities “all over the place” network-wise and security-wise? What most of us need is “network duct tape”. Tom Sego of Blastwave shows us how their “duct tape” works.

Explore safety, risk, likelihood, credibility, and unhackable cyber defenses in the context of Norwegian offshore platforms.

In this episode, Brian Derrico of Trident Cyber Partners walks us through what it’s like to use inventory tools – different kinds of tools in different environments – which have become almost ubiquitous as main offerings or add-ons to OT security solutions.