Secure configuration management
Misconfiguration is a common issue in network Cyber Security events. They may be caused by intentional or unintentional operator changes, or sometimes by attacks from external networking.
Network Segmentation
BlackBear’s observations: Data Diodes are used to segment networks in a simple and effective way.
Firewalls vs. Data Diodes
When talking about data Diodes, a question that people often ask is, “So, what’s the difference between firewalls and Data Diodes?”
We say that the two are complementary, as Data Diodes provide additional security measures for especially vulnerable network segments. Looking into more detail, however, it is clear that firewalls and Data Diodes have totally different concepts.
An isolated OT is not a secure OT
We have always been led to believe that the best way to secure a network, a system, or a subnet is to isolate it from the rest of the network. In short: disconnect it. Also, we tend to believe OT subsystems are immune from threats because threats will only originate from the enterprise or upstream networks.
Hacker attempted to poison water supply of Florida city, officials say
BlackBear’s observations: Firewalls are inadequate for this type of attack, since the command format itself is valid, even though the value is incorrect.
Colonial Pipeline paid $4.4M to end cyberattack – ethical?
BlackBear’s observations: Two-way communication can cause possible exposure of critical assets.