Latest coverage for ICS
ICS security covers industrial control systems running physical processes and relying on reliable networks, where failures may affect safety and availability.
Refine the feed
Search across headline titles and summaries.
Tag briefing
Background for this topic.
Industrial control systems (ICS) are the computers, networks, programmable controllers, sensors, and actuators that monitor and operate physical processes. They include supervisory control and data acquisition (SCADA), distributed control systems, and plant-floor automation in sectors such as manufacturing, energy, transport, and water. Their critical assets are the control logic and process data, while their dependencies include engineering workstations, operator consoles, industrial protocols, communications links, and sometimes connections to enterprise or remote-access systems.
ICS security must protect availability, process integrity, and safety as well as confidentiality. Unauthorized changes to controller logic, compromised remote access, vulnerable engineering software, or disruption of communications can produce unsafe conditions or halt operations, though impact depends on the process and its safeguards. Defenses commonly include accurate asset inventories, network segmentation, tightly controlled and monitored remote access, secure configuration, tested backups of control logic, and vulnerability management that accounts for maintenance windows and the risks of disrupting real-time systems. Incident response may require isolating affected equipment while preserving safe operation or manual fallback.
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware
A pair of recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) virtual private network (VPN) devices have been exploited to deliver a Rust-based payload called KrustyLoader that's used to drop the open-source Sliver adversary simulation tool