Why “Back to basics” regarding security testing? Well... during several previous security assessments that I have performed, I have run into a lot of the issues mentioned within the presentation I have given on this years CS3STHLM conference in Stockholm. Sometimes I also have the feeling that too much attention is given to technical and… Continue reading Security testing for ICS Owners – Back to Basics …
Blog
Operator Jail breakout
In 2018, I gave a presentation at the CS3STHLM conference together with Frank Lycops on Operator Jail breakouts. Operator Jails are meant to prevent process operators from having access to the underlying operating system (OS), so all access to the OS not required for the daily task is shielded from them ... or at least… Continue reading Operator Jail breakout
Collaboration Network extended
After having established a good and close cooperation between Secudea, Onrix and Asvalis, it was time to expand the portfolio of combined services. This is why the collaboration network has been extended with Corelan Consulting (founded by Peter Van Eeckhoutte). The foundations of this cooperation are based on strong policy and security principles, including mutual… Continue reading Collaboration Network extended
Collaborations
Secudea has formed a collaboration network with Onrix and Asvalis to be able to provide a wider range of services to its customers in both the OT as well as the IT landscape. At the same time, we offer our own services through our partners to their end customers as well. It is the strength… Continue reading Collaborations
Upcoming talk @CS3STHLM – Operator Jail Breakouts
In a few weeks I’ll be giving a talk together with Frank Lycops ( https://asvalis.com) on the hidden dangers of Operator Jail breakouts, how to test these issues, and how to prevent them. The talk will be provided at the CS3sthlm conference in Sweden (https://cs3sthlm.se/). A brief summary of what to expect: Operator stations are today… Continue reading Upcoming talk @CS3STHLM – Operator Jail Breakouts
secudea.be 