Categories

5 cyber security frameworks and standards you need to know

Critical infrastructure organisations are facing cyber threats more than ever in this ever-evolving landscape. Protecting assets and ensuring our communities are safe from these cyber threats starts with understanding and adopting established cyber security frameworks that provide structured guidelines and best practices. These frameworks serve as valuable blueprints, helping organisations build resilient defences. But with… Continue reading 5 cyber security frameworks and standards you need to know

What is the CIRMP?

The Australian Government signed off on the Critical Infrastructure Risk Management Program (CIRMP) as the final part of the Security of Critical Infrastructure (SOCI) Act updates in February 2023. If you’re an Australian critical infrastructure organisation it’s likely that these updates will apply to you, but what does it all really mean? In this article,… Continue reading What is the CIRMP?

Photo of a woman holding a microphone while standing on a platform at an operational technology cyber security meetup in a bar setting

OT Cyber Security Meetups

Operational technology (OT) is the backbone of our critical infrastructure. It powers our cities, transport systems, energy plants, and manufacturing operations. With the rapid digitalisation of OT systems and the rise in cyber threats, securing our OT has become a top priority for organisations across different sectors. As cyber security challenges continue to evolve, it’s… Continue reading OT Cyber Security Meetups

Critical Infrastructure’s Most Notorious Cyber Threat Actor Groups

This blog post will highlight some of the different types of malicious groups that target Critical Infrastructure and examples of such attacks occurring.   Critical Infrastructure is a term used by governments to describe assets used by the public that are essential for the functioning of a society and economy, and infrastructure. These public assets… Continue reading Critical Infrastructure’s Most Notorious Cyber Threat Actor Groups

The SOCI Act, where are we now and how can we help?

The Australian government are moving at speed and the next phase of the SOCI Act, and the risk management program (RMP), should be finalised in December 2022 after industry consultation.     Here’s an overview of the SOCI Act, what’s been passed and what is being worked through.     Key takeaways:  ▪ SOCI reforms… Continue reading The SOCI Act, where are we now and how can we help?

Cyber-attacks on the Food and Beverage manufacturing industry

This blog looks at the Food and Beverage manufacturing industry, what potential attacks could occur within the Food and Beverage manufacturing industry, how organisations within the industry can prevent or minimise the effect of a cyber-attack, and how Industry 4.0 further increases an organisation’s exposure to cyber-attacks.   What is Industry 4.0 and why does… Continue reading Cyber-attacks on the Food and Beverage manufacturing industry

Cyber-attacks on the Ports and Maritime industry 

This blog examines some examples of the diverse types of cyber-attacks that have occurred in the Ports & Maritime industry. By gaining insights into some of the various impacts across OT & IT we then look at what areas to consider building resilience against such attacks.   What are the different types of cyber-attacks that could potentially occur and what are the impacts of these cyber-attacks in the… Continue reading Cyber-attacks on the Ports and Maritime industry 

Secolve Identifies Vulnerability in Schneider’s Acti9 PowerTag Link C Product

Background   Recently, Secolve assessed the security of Schneider Electrical’s Acti9 PowerTag Link Csmart PLC and the EcoStructure Facility Expert software and applications. We identified and reported vulnerabilities in the devices, applications and cloud infrastructure that would have exposed sensitive user information and allow commands to be run on devices without proper authorisation or authentication.… Continue reading Secolve Identifies Vulnerability in Schneider’s Acti9 PowerTag Link C Product