你可能會喜歡
![mtoecker's profile picture. Electric Power Geek, Hardhat Hacker, Control System Security Engineer, & .... Opinions are my own. (ಠ_ಠ) c[_] KC3GST](https://pbs.twimg.com/profile_images/426061706758852608/BcnCAW3P_x96.jpeg)
Check out this post on responding quickly to open-source supply chain attacks, in this case, the #XZ hack. This backdoor was deliberately injected into the widely used secure shell service daemon #sshd by unknown attackers (IMHO a nation-state: see also wired.com/story/jia-tan-…)
We have a new blog post describing our response to the #vulnerability in the #XZ Utils library. We reassured our customers that they were at no risk from this threat (and spared them the costly task of wading through false positives to find it). #liblz... adol.us/4aPjpvP
Read @ICS_Secure's latest blog on Evolving Threats and Regulations in Software Supply Chain Security. Attacks are on the rise — Eric touches on topics he'll discuss at #S4x24, like software supply chain attacks definitions, #vulnerabilities, #SBOMs. adol.us/42Tifwl
I was in Brussels last week talking about this exact issue with Commission staff and ENISA experts. Glad that you're monitoring this, and always happy to hear your thoughts.
Most SBOM initiatives have been coming out of the US, thanks to EO14028. Now, the EU is adding teeth to requirements for SBOMs with its Cyber Resilience Act. Check out my summary of the impact on the IoT/OT markets; let me know if you agree that it could have a massive impact.
The EU Cyber Resilience Act took a big step toward enactment this week. Read our blog to get @ICS_Secure's commentary on the implications this legislation has for software supply chain security. #SBOM #vulnerabilitymanagement adol.us/3Rf2SZF
The EU Cyber Resilience Act took a big step toward enactment this week. Read our blog to get @ICS_Secure's commentary on the implications this legislation has for software supply chain security. #SBOM #vulnerabilitymanagement adol.us/3Rf2SZF
If you’ll be at the @SecurityWeek ICS Cybersecurity Conference in Atlanta, track me down. I'm happy to explain how the industry made huge strides using SBOMs to secure software supply chains. #ICSCC23
Planning to be at the @SecurityWeek ICS Cybersecurity Conference in Atlanta this week? Don't miss hearing Eric Byres @ICS_Secure speak on Making a Molehill Out of a Mountain of #SBOMs. Learn how to convert SBOM data into actionable threat and risk intelligence. #ICSCC23
The 2023 #MDDR report shines a sharp light on the state of OT firmware updates. You can read more about the actual statistics and my thoughts on the reasons in my blog.
The 2023 Microsoft Digital Defense Report (#MDDR) features aDolus OT #vulnerabilities analysis. Together we uncovered alarming statistics about unpatched, highly vulnerable PLCs on OT networks. Read our blog: The Wretched State of OT Firmware Patching blog.adolus.com/the-wretched-s…
Effective hunting for #vulnerabilities in #OT requires navigating the namespace problem (i.e., most product and vendor names have multiple aliases), plus the ability to process text-based data such as massive PDFs from vendors. Our blog explains how we did it for the #MDDR
The Microsoft Digital Defense Report (#MDDR 2023) dropped today and we provided key research and analysis for the section on OT #vulnerabilities. Read how we used machine learning to analyze manufacturer and industry disclosures to identify CVEs in PLCs. adol.us/46eThYU
The Microsoft Digital Defense Report (#MDDR 2023) dropped today and we provided key research and analysis for the section on OT #vulnerabilities. Read how we used machine learning to analyze manufacturer and industry disclosures to identify CVEs in PLCs. adol.us/46eThYU
#OTCEP 2023 is starting. Minister Josephine Teo is presenting a great summary of the risk and opportunities for OT systems.
Passionate about ICS incident response panel @SCADAhacker @RobertMLee @CSAsingapore #otcep | …person on right is making a point 😁
A very amusing story of how #ChatGPT led one of the @aDolus_Inc team down a giant rabbit hole of #misinformation. Highly recommended reading for anyone thinking of using #GenerativeAI
We've got a new blog post: How To Be Confidently Wrong - An experiment testing how well ChatGPT summarized the National #Cybersecurity Strategy document. Let's just say it took some editorial liberties. adol.us/43mpY5N
I'm delighted to have Kevin join us as CEO at aDolus. I've known Kevin for years - he is an insightful leader who really understands the security industry. With his proven track record of solving customer challenges and growing revenue, I look forward to a fruitful collaboration.
We have some exciting news! Kevin Senator @kevinS83029404 has joined aDolus as CEO. You can read our press release for more info on Kevin's background. Kevin takes over from Rod Campbell @CampbellRod who is becoming aDolus' chairman of the BOD. adol.us/3Jxy2Hz
I've been active in the #foodandbeverage industry since my BCIT lab days when Kraft Foods was a major research sponsor. It is great to see a major player in the space take #softwaresupplychainsecurity so seriously. See you at #S4x23 - I'll be in the #SBOM pavilion!
We're excited to provide #SBOMs and software supply chain visibility to our new partner in the food and beverage #manufacturing industry. adol.us/3HBBAaP
Thomas Pace of @NetRiseInc presenting a great talk in the challenges of looking up OT vulnerabilities in public vulnerability databases at #icscc22. Definitely worth listening to!
Very exciting to see @Microsoft open source their internal SBOM generation tool. Would love to hear what you think of it. devblogs.microsoft.com/engineering-at…
United States 趨勢
- 1. #SmackDown 41K posts
- 2. Norvell 2,883 posts
- 3. Mamdani 410K posts
- 4. Reed Sheppard 2,716 posts
- 5. Florida State 10.6K posts
- 6. Marjorie Taylor Greene 54.4K posts
- 7. NC State 5,257 posts
- 8. #OPLive 2,343 posts
- 9. Collin Gillespie 1,428 posts
- 10. #BostonBlue 3,737 posts
- 11. Suns 11.5K posts
- 12. Sengun 6,560 posts
- 13. Timberwolves 8,998 posts
- 14. Syla Swords 2,920 posts
- 15. Booker 6,906 posts
- 16. Dillon Brooks 2,258 posts
- 17. Anthony Edwards 2,297 posts
- 18. Azzi 15.7K posts
- 19. Derik Queen 4,626 posts
- 20. Aiyuk 5,991 posts
你可能會喜歡
-
SANS ICS
@SANSICS -
ICS Village
@ICS_Village -
![mtoecker's profile picture. Electric Power Geek, Hardhat Hacker, Control System Security Engineer, & .... Opinions are my own. (ಠ_ಠ) c[_] KC3GST](https://pbs.twimg.com/profile_images/426061706758852608/BcnCAW3P.jpeg)
Mɪᴄʜᴀᴇʟ Tᴏᴇᴄᴋᴇʀ
@mtoecker -
Antón Shipulin 🌐
@shipulin_anton -
Gregory Hale
@isssource -
Jim Gilsinn
@JimGilsinn -
Marco (Marc) Ayala
@ICS_SCADA -
Fred A
@scadaDefender -
Matt Cowell
@m_p_cowell -
OTbase
@langnergroup -
Austin Scott
@Austin_M_Scott -
Khalid Ansari
@_Khalid_Ansari -
Bryan L Singer
@BryanLSinger -
Monta Elkins
@montaelkins -
Frumious Scadateer
@scadateer
Something went wrong.
Something went wrong.