11-12-18 – News This Past Week

Flaws in Roche Medical Devices Can Put Patients at Risk
The affected products consist of a base unit and a handheld device that communicates wirelessly – including over Wi-Fi if an optional module is available – with the base unit. Medigate researchers discovered that an attacker with access to the local network can hack the base station and from there target the handheld devices.
https://www.securityweek.com/flaws-roche-medical-devices-can-put-patients-risk

Implications of the NIS Directive for the industrial sector
Under the law, operators of essential services and digital service providers are required to abide by the requirements of the new regulations. These are intended to provide a framework for countries and operators to strengthen the security of critical infrastructures and allied information systems. Any operator with 50 or more employees and/or a balance sheet of greater than €10 million must comply with the NIS Directive
https://www.helpnetsecurity.com/2018/11/12/nis-directive-industrial-sector/

IT-to-OT Solutions That Can Bolster Security in the IIoT
The Industrial Internet of Things (IIoT) — within companies and across the entire global IIoT ecosystem — is an intricately intertwined and negotiated merger of information technology (IT) and operational technology (OT). OT systems are not only business-critical, they can be nation-critical or life-and-death-critical.
https://www.darkreading.com/attacks-breaches/it-to-ot-solutions-that-can-bolster-security-in-the-iiot/a/d-id/1333210

How A New Wave of Cyber-Attacks is Targeting Maritime Trade
In concrete terms, the historical “air gap” separating industrial control systems from enterprise networks meant that factories and shipyards were more or less immune to cyber-attack. As long as systems were air-gapped it didn’t matter how pernicious or effective the cyber-threat became, we felt confident that these virtual concerns couldn’t impact our physical infrastructure.
https://www.securityweek.com/troubled-waters-how-new-wave-cyber-attacks-targeting-maritime-trade

Posted in Uncategorized.