Skip to main content

Tag: operational technology

106 articles

Industrial control equipment and network switch on a rack in a brightly-lit control room.

Siemens ROX II Zero-Days Expose Critical Infrastructure Risks

Our research team, in close collaboration with Siemens, uncovered a critical vulnerability chain of three zero-day exploits in Siemens ROX II operational-technology switches, posing significant risks to critical infrastructure security. This chained exploit could allow attackers to escalate from basic reconnaissance to full root-level control.

Analyst 207
US military network operations center with IT equipment and large window.

Pentagon CIO Ramps Up Cybersecurity, Tech Modernization for Warfighters

The Pentagon's CIO is turbocharging cybersecurity and tech modernization to empower warfighters, with a focus on four key pillars to drive transformation. This initiative has already seen rapid adoption, with 1.3 million users on board with GenAI.mil.

Analyst 207
A dimly lit industrial control room with a clean, empty workstation and unoccupied chair in front of computer screens and…

Malicious Activity on Industrial Systems Declines to 3-Year Low

Malicious activity on industrial systems has hit a 3-year low, with only 19.6% of ICS computers encountering malicious objects in Q1 2026 - a significant drop of 1.4 times from Q2 2023. However, beneath the calm surface, localized spikes of threats persist, warranting close attention.

Analyst 207
Control room operators monitor industrial systems amidst rows of screens and control panels.

Accenture Bolsters Industrial Cybersecurity with $4.18B Acquisition Spree

As Robert M. Lee aptly puts it, our critical infrastructure, from energy and water systems to manufacturing plants, is crying out for robust cybersecurity that can stay one step ahead of evolving threats - and failing to deliver it could have disastrous societal consequences. Accenture is answering the call with a whopping $4.18 billion investment to bolster industrial cybersecurity.

Analyst 207
Water treatment plant interior showing operational equipment and controls.

Experts Cast Doubt on Handala's US Water Hacking Claims

Experts are debunking Handala's claims of being able to shut off water in US cities, with no evidence to back up the group's bold assertions. According to Sean Malone, Chief Information Security Officer at BeyondTrust, the breach appears to be limited to non-critical systems, with no impact on water treatment or distribution.

Analyst 207
Technicians monitor sections of an industrial control room with scattered stations and a large window showing an industrial…

Operational Technology Cybersecurity Gaps Persist Despite Growing Maturity

Many industrial organizations are bolstering their operational technology security, but a significant gap remains: 23% of respondents only have visibility into half of their OT environment. This blind spot leaves them vulnerable to ransomware, nation-state actors, and other cyber threats.

Analyst 207
Internet-exposed automatic tank gauge system at a gas station with pumps and convenience store in the background.

US Gas Station Tank Gauge Systems Vulnerable to Ongoing Attacks

US gas stations are under cyberattack, with hackers exploiting vulnerable tank gauge systems to gain control and wreak havoc. A joint advisory from top US agencies is urging critical infrastructure organizations to secure their internet-exposed systems ASAP.

Analyst 207
Industrial setting with fuel storage tanks and an automatic tank gauge system.

Hackers Target Fuel Tank Monitoring Systems with Cyberattacks

Cyber attackers are launching targeted strikes on internet-exposed fuel tank monitoring systems, allowing them to modify and manipulate critical infrastructure. These compromised systems, known as automatic tank gauges, remotely track fuel levels, temperatures, and leaks, making them a prime target for malicious actors.

Analyst 207
Municipal water utility control room with industrial equipment and infrastructure.

AI Tools Facilitate but Fail to Deliver in Water System Hack Attempt

In a recent cyber attack on nine Mexican government entities, hackers surprisingly used AI tools like Claude and Chat GPT to help breach the systems, but ultimately failed to cause significant harm. The attack, which included a January intrusion into a municipal water and sewage utility, revealed that while AI can facilitate malicious activity, it can't guarantee success.

Analyst 207
Industrial control systems and pipes at a municipal water utility under ordinary lighting, with subtle hints of a potential…

Dragos Warns of AI-Powered Cyber-Attack on Mexican Water Utility

A recent cyber attack on a Mexican water utility highlights the growing threat of AI-powered attacks, with commercial AI tools used to identify and breach operational technology infrastructure. The attack, detected by Dragos, shows how easily an adversary can target critical infrastructure with the help of advanced AI tools.

Analyst 207
Technicians and operators work at consoles in a power grid control room with a mix of analog and digital equipment.

CISA Launches Framework to Fortify Critical Infrastructure Against Cyber-Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) has launched CI Fortify, a vital planning framework designed to shield critical infrastructure sectors like water, energy, and transportation from devastating cyber-attacks. This timely guidance helps organizations safeguard their networks and essential services from threat actors seeking to disrupt and degrade infrastructure.

Analyst 207
Government agency interior with industrial control system and technology infrastructure.

CISA's Zero Trust Guidance Falls Short on Cost, Implementation Details

While CISA's new zero trust guidance for operational technology is a step in the right direction, it leaves critical questions unanswered - namely, who foots the bill and how do organizations actually implement it? The guidance gets high marks for technical thinking, but falls short on practical details like funding, timelines, and automation.

Analyst 207
Researchers Uncover Fast16 Malware's Stealthy Industrial Sabotage Role

Researchers Uncover Fast16 Malware's Stealthy Industrial Sabotage Role

Researchers have uncovered a highly sophisticated malware, Fast16, designed to secretly sabotage industrial operations by subtly manipulating critical calculations, leading to potentially catastrophic failures. This stealthy threat can silently spread across networks, altering results in high-precision applications and causing damage to real-world equipment.

Analyst 207
Control room with industrial equipment and computer systems under bright lighting, featuring multiple monitors and a large…

US Agencies Issue Zero Trust Guidance for OT Security

US government agencies have just released a game-changing guide to help protect critical infrastructure systems with practical, layered security strategies. The new zero-trust guidance provides a tailored approach for operational technology environments, balancing safety and uptime needs with robust security measures.

Analyst 207
Industrial control room with rows of systems, networking equipment, and monitoring stations under fluorescent lighting.

CISA Warns of Data Theft Bug in NSA-Built OT Networking Tool

A critical vulnerability, CVE-2026-6807, has been discovered in an NSA-built networking tool that could allow hackers to steal sensitive information by exploiting an XML parsing weakness. If left unpatched, this flaw could lead to devastating data breaches.

Analyst 207
Empty chair in front of computer workstations and industrial equipment in a dimly lit facility.

Frontier AI Labs Cut Off OT Sector from Cyber Vulnerability Tools

A concerning gap in cybersecurity support has emerged, as operational technology companies are being left out of access to cutting-edge AI models from Anthropic and OpenAI, despite being crucial to the sector. This exclusion raises significant questions about the vulnerability of these organizations to cyber threats.

Analyst 207
Rows of computer servers and equipment in a calm, professional data center.

Itron Breach Exposes Internal IT Network Vulnerability

Itron recently disclosed that its internal IT network was breached by an unauthorized third party, prompting swift action to contain and mitigate the incident. The company quickly activated its cybersecurity response plan and notified law enforcement, successfully blocking the unauthorized activity with no reported follow-up attempts.

Analyst 207
Dark harbor at dusk with lighthouse beam on a distant cargo ship, tangled ropes and computer cables in foreground.

Coast Guard Rule Ramps Up Maritime Cybersecurity Standards

A new Coast Guard rule is set to revolutionize maritime cybersecurity by enforcing stricter standards on operational technology systems at US ports and commercial vessels, turning a long-overdue necessity into a booming market. This regulatory shift comes at a critical time, as global tensions rise and the shipping industry becomes an increasingly attractive target for cyber threats.

Analyst 207
Futuristic unmanned boat navigates choppy waters with rugged coastline in background and glowing navigation screen in…

Autonomy Charts Course for Unmanned Maritime Edge

As missions venture further and communication links grow weaker, predictive software can be the lifeline that keeps them on track. By anticipating and tackling problems before they escalate, this technology can bridge the gap between intent and action.

Analyst 207
Dimly lit control room with computer screens and machinery, eerie shadows cast by flickering fluorescent light.

ZionSiphon Malware Targets Water Infrastructure Systems becomes ZionSiphon Malware Infiltrates Water Infrastructure Systems

Imagine malware that's not just a data thief, but a menacing force that can map and disrupt the very plumbing of a city - that's the alarming reality of ZionSiphon, a malicious tool targeting water infrastructure systems with sabotage and scanning capabilities. This sinister malware can scan, disrupt, and wreak havoc on operational-technology water systems, posing a significant threat to public safety.

Analyst 207
Dripping faucet over cracked earth with dimly lit control room and devices in background.

Malware Targets Israeli Water Systems with Precision Attacks

A newly discovered malware strain called ZionSiphon is threatening Israeli water systems with precision attacks, leaving experts concerned about the vulnerability of critical infrastructure. This sophisticated code can infiltrate and manipulate the machines that control pumps and filters, putting a city's taps at risk.

Analyst 207
Dimly lit control room with flickering light, laptop screen showing distorted digital landscape, and broken water pipe with…

Malware Targets Water Treatment Systems with Sabotage Capabilities

Meet ZionSiphon, a new and alarming type of malware designed to sabotage water treatment systems by stopping the flow of water, posing a significant threat to operational technology in these environments. This malicious software is purpose-built to disrupt, rather than spy or steal, highlighting a chilling new risk for the industry.

Analyst 207
Dark industrial landscape with malfunctioning robotic arm and cityscape in background displaying swirling code on giant…

Industrial Automation Systems Face Rising Cyber Threats Globally

As cyber threats escalate globally, industrial automation systems are becoming a prime target, leaving factories and control rooms vulnerable to attack - but who's sounding the alarm and answering the call? A recent industry snapshot for Q4 2025 sheds light on the rising threat landscape, revealing key infection vectors, malware trends, and regional hotspots.

Analyst 207
Breached floodgate in Venice with water pouring in, laptop screen glowing amidst debris and water.

Venice Flood Defenses Breached by Hackers

Imagine a city's defenses against its greatest threat - water - being breached not by a natural disaster, but by an unknown cyber attacker. In a chilling turn of events, hackers have infiltrated Venice's hydraulic pump system, claiming they can wield the power to create floods at will.

Analyst 207