Critical Infrastructure

The SecurityInfoWatch.com Critical Infrastructure category is a collection of news, analysis, and other information relevant to security professionals who work in or provide services to the Critical Infrastructure market. It covers issues pertaining to security management as well as security technology deployments at utilities, airports, transit operators, oil and petrochemical facilities, and other critical infrastructure operators.

When we think about cybersecurity, we often focus on blocking bad actors and avoiding attacks like phishing and ransomware. However, data is constantly shared without people's knowledge or consent, and until relatively recently, this practice was legal and there were very few barriers to doing so.

Breach Detection

Why it’s not just about hackers anymore

Dec. 10, 2024

The growing privacy crisis requires proactive auditing, reducing unnecessary tracking, limiting third-party data sharing and prioritizing consent.

How water and wastewater systems can meet the EPA’s cyber hygiene demands

Critical Infrastructure

How water and wastewater systems can meet the EPA’s cyber hygiene demands

Samantha Schober

Dec. 10, 2024

Significant blemishes in U.S. history, such as the 2014 cyber infiltration of Sony Pictures and the 2016 cyberattack on the Democratic National Convention information systems, serve as stark reminders about nation-state actors’ advanced capabilities to reach out and touch even U.S. companies and infrastructure beyond the IT closets and keyboards.

Strategies Emerging to Fill in the Physical Security Gaps with Zero Trust

Dec. 9, 2024

Designing and implementing a robust physical security program is a significant undertaking, even for a single-site organization. However, when scaling these efforts globally, security professionals in multinational corporations face a unique set of obstacles that demand meticulous planning.

Security Executives

Challenges in Starting up a Physical Security Program for a Multi-National Corporation

Frank Pisciotta

Dec. 9, 2024

Critical Infrastructure

Today’s credential screening technology in 25 major U.S. airports and hundreds more by the end of 2025 will move travelers faster and safer through verification employing mobile phones.

Access & Identity

TSA Speeds Millions Through Airports Using Identity Verification Technology

Dec. 9, 2024

Salt Typhoon’s operations are characterized by sophisticated tactics aimed at persistent access to their targets. They exploit vulnerabilities in public-facing systems, including routers and firewalls, and leverage compromised credentials to escalate privileges and move laterally within networks.

Breach Detection

Chinese hackers continue to torment U.S. telecommunication companies

Dec. 4, 2024

Compromised software code poses new systemic risk to U.S. critical infrastructure

Critical Infrastructure

Compromised software code poses new systemic risk to U.S. critical infrastructure

Fortress Cyber Security

Dec. 4, 2024

Nozomi Networks teams with Advens to defend industrial, critical infrastructure from cyber threats

Nozomi Networks teams with Advens to defend industrial, critical infrastructure from cyber threats

Dec. 4, 2024

Categories

Alarm Systems & Intrusion Detection

Artificial Intelligence

Associations, Research & Training Organizations

Camera Accessories

Central Station Alarm Monitoring

Dealers, Integrators & Installing Companies

Emergency Safety Equipment

Fire & Life Safety

Home Alarm Systems

Hosted/Managed Video Surveillance

Identification Solutions

Information Security

Infrared Illuminators

Installation Tools & Equipment

Integrated Security Management Systems & PSIM

Intercom Solutions

License Plate Detection

Loss Prevention Solutions

Monitors & Video Walls

Networking Equipment and Cabling

Physical Hardening

Power Systems & Supplies

Protective Operations & Guard Services

Safes, Seals and Security Containers

Security Industry Services

Security Lighting

Threat Detection, Imaging & Inspection

Video Analytics

Video Intercoms

Video Management Software/VMS

Video Surveillance Storage

Video Transmission Equipment

Wellness/Elderly Monitoring

Wireless Video Solutions

DHS unveils new framework for the safe and secure deployment of AI in critical infrastructure

Critical Infrastructure

DHS unveils new framework for the safe and secure deployment of AI in critical infrastructure

Nov. 22, 2024

Public sector entities, including federal, state, local, tribal, and territorial governments, are essential to the responsible adoption of AI in critical infrastructure.

Ransomware-as-a-service — known as RaaS — operators such as LockBit rely on networks of other malicious hackers known as affiliates to carry out attacks. RaaS operators provide the malware and infrastructure to affiliates, and the two sides share the ransom paid.

How today's ransomware groups operate

Nov. 20, 2024

Vulnerability-related threat intelligence can help organizations understand which software flaws threat actors are interested in exploiting.

HiveWatch’s AI Operator is positioned as the game-changer, automating mundane tasks while empowering human professionals to focus on complex strategic initiatives.

Artificial Intelligence

HiveWatch unveils AI Operator powered by Anthropic’s Claude

Nov. 20, 2024

This AI innovation aims to transform security teams' operations, empowering them to be more proactive and intelligence-driven.

Horizon3.ai launches NodeZero Kubernetes Pentesting

Critical Infrastructure

Horizon3.ai launches NodeZero Kubernetes Pentesting

Nov. 12, 2024

NodeZero's pentesting capabilities are designed for any Kubernetes distribution, including EKS, GKE, and AKS.

According to a U.S. Department of Justice report, illegal drone drops at correctional facilities are increasing by 50% or more annually, with no signs of slowing. These aerial invaders carry everything from drugs and cell phones to weapons, creating what security experts call an unprecedented threat to facility safety.

Unmanned Aerial Vehicles (Drones)

Prison security looks skyward with advanced drone detection network

Nov. 7, 2024

The drone threat continues to evolve, with smugglers adopting increasingly sophisticated tactics.

TSAcriticalinfrastructure

Proposed TSA rule would establish cyber risk management programs for pipelines, railroads

Nov. 7, 2024

The proposed rule leverages the cybersecurity framework developed by NIST and the cross-sector cybersecurity performance goals developed by CISA.

As geopolitical tensions rise and criminal networks exploit technological vulnerabilities, the need for preparedness and resilience becomes more urgent than ever, demanding immediate action.

Security Executives

Executive Insights: How tactical expertise shields global enterprises in an unstable world

Nov. 4, 2024

In an era of unprecedented threats Crisis24’s proactive approach, enhanced by AI and decades of field experience, empowers companies to stay resilient and ready.

By proactively identifying and addressing potential flaws in your infrastructure, you can significantly reduce your vulnerability, even if you've invested heavily in physical security measures.

Is your data center or server room at risk?

Nov. 1, 2024

Physical security measures are a critical element in keeping data safe from bad actors

repairmanrunningcodedatacenter_48225785861

Critical Infrastructure

Cloud Security Alliance examines application of Zero Trust principles for critical infrastructure

Cloud Security Alliance

Oct. 29, 2024

The new paper lays out the foundational concepts of Zero Trust and provides a tailored roadmap for implementing these principles effectively in OT/ICS settings.

Credit: adamkaz

Critical Infrastructure

Machine identities and digital trust: An election security case study

Oct. 29, 2024

Election officials and industry executives must prioritize IoT security by embedding it from the start of machine identity creation.

nationalcyberstock

Cyware and ECS ally to strengthen government cybersecurity, enhanced intel exchange

Oct. 28, 2024

The design partnership aims to empower federal entities with tailored threat intelligence solutions that enable collective defense and critical infrastructure security.