Position Paper: BSI Calls For More Cybersecurity in the Energy Sector

In this episode of the miniseries titled, Simon Rommer and Stephan Mikiss discuss the steps of containment, eradication and recovery in the incident response process.

On 16 April, the cybersecurity community was startled by the announcement about the MITRE organization: Funding for the CVE and CWE programs is coming to an end, and with it the continued existence of the CVE database.

On 16 April, the cybersecurity community was startled by the announcement about the MITRE organization: Funding for the CVE and CWE programs is coming to an end, and with it the continued existence of the CVE database.

Recent cybersecurity legislation emphasizes the need to protect critical infrastructure. The EU's NIS2 Directive and similar regulations in the USA, Singapore, Australia, and Switzerland aim to enhance security measures across various sectors.

Simon and Johann Stockinger about the importance of Identification, which is the second step in the incident response process.

Over the next decade, we’ll protect Glitre Nett's operations with StationGuard, providing comprehensive protection against cyber threats in their OT networks.

In this episode, Simon speaks with Tibor Külkey from ALSEC Cybersecurity Consulting, Simon and Tibor discuss the critical importance of preparation.

On January 16 and 21, CISA published 13 security advisories for OT systems. These security advisories describe vulnerabilities in systems that are also used in power grids worldwide.

This report provides key insights into OT security vulnerabilities impacting industrial control systems (ICS). By analyzing thousands of vulnerabilities, it highlights trends in publication, predominant weaknesses, and attack vectors.

Amid all the recent buzz about NIS2 over the past weeks (or even months), one could easily overlook that a new version of the ISO 27019 standard has just been released. This standard is not only highly relevant for information security certifications.

Without network access control (NAC), anyone can plug into the Ethernet switches of critical control networks in substations, power plants, or control centers and send commands to the devices.

Today, October 17, 2024, is the deadline for EU Member States to transpose the NIS2 Directive (2022/2555) into national law. It was adopted in December 2022 and requires that national laws on cybersecurity be published by today and enter into force.

Patching assets in power grid substations is a complex task fraught with challenges unique to the OT environment.

StationGuard simplifies OT security with advanced intrusion detection, asset and vulnerability management, and functional monitoring. This brochure tells you everything you need to know about our benchmark solution.

In the majority of young security programs, questions regarding logs arise at an early stage. With the introduction of a SIEM, it is crucial to consider how to integrate operational technology (OT) into the predominant information technology(IT) infrastructure.

Windows devices are omnipresent in information system environments due to their ease of use, wide range of applications, and compatibility. However, their presence in operational technology (OT) networks presents significant security challenges.

On this first episode of our new miniseries, Andreas Klien and Simon Rommer, explore the critical roles of IT and OT in cyber incident response and disaster recovery.

Energy Talks miniseries, called Cybersecurity in the Power Grid which we provide you with a 360-degree view of how power grids can best safeguard their infrastructures from cyber attacks.

Are your operational technology (OT) devices connected to external networks? Thanks to convenient features like update capabilities and remote connections, the answer is likely positive. This presents an alarming but often overlooked threat.

NIST has identified a vulnerability in SICAM SCADA systems that could allow an unauthorized individual to gain administrator rights on the OT systems.

We look at the diverse world of security advisories and how to use them, and the wealth of experience of our experts in developing our OMICRON advisories.

Why do hardware devices, in addition to software, need to be secured against cyber threats. OMICRON hardware developer Marcel Ströhle is the guest.

Firewalls are the first line of defense in protecting critical infrastructures in cyberspace. This makes them particularly attractive to attackers.

The new version brings along many usability upgrades, incl. MMS server availability, improved router behavior, and more …

Learn how the OMICRON cybersecurity experts analyze incoming alarms and reveal hidden dangers that threaten the safety and operations of an entire system.

Gath­er­ ad­vi­sories, up­date your GridOps vul­ner­a­bil­ity data­base, tend to your as­set in­ven­tory, vul­ner­a­bil­ity match­ing, and risk as­sess­ment.

On February 26, 2024 the National Institute of Standards and Technology (NIST) published the second version of the NIST Cybersecurity Framework (CSF 2.0).

With the German IT Security Act, energy utility operators are required to adhere to the "state of the art" to manage cyber risks effectively.

We collaborated with the BSI and the Fraunhofer Institute to develop an nmap plug-in for OT networks, enhancing tools for power grid administrators.

Andreas Klien discusses the differences and similarities of using OT technology in the aviation and electrical power industry sectors with his guest, Ron Brash.

In this podcast episode, Andreas Klien, discusses the security engineering of digital products used in the power grid with his guest, Sarah Fluchs.

In this podcast episode, Anastasiya and Jaques share their experiences, challenges, and innovations in developing our cybersecurity products.

The German Federal Office for Information Security (BSI) has tested our StationGuard and awarded us the IT security certificate (BSZ) as a result.

You think your linux devices are immune to cyber attacks just because there's no official security advisory? You might be wrong.

OMICRON cybersecurity analysts Christoph Rheinberger and Eric Heindl share their personal experiences for IT and OT security officers.

Discover the challenges faced by power providers and practical recommendations for enhancing OT network security.

With StationGuard 2.30, you can imrove your workflows. The intrusion detection system (IDS) enables you to monitor Ethernet networks in the power grid.

In this podcast episode, learn how to successfully implement cybersecurity into critical power system infrastructures with OMICRON cybersecurity experts.

Learn how vulnerability management tools ensure a more effective cybersecurity in power grids.

OMICRON cybersecurity expert Benjamin Teudeloff talks about the increasing necessity for power providers to improve their cybersecurity practices.

Our cybersecurity expert, Ozan Dayanc, reveals insights from global substation security assessments.

Cybersecurity from the Control Center to the Substation - Stadtwerke Kempen is Building a New Substation with OMICRON

StationGuard has a a new search feature that makes it easy to find all equipment information in your network.

StationGuard 2.30 will include a new feature that makes it easier than ever to assess and secure your OT network.