CRITICAL CVE-2026-20182 active exploitation: Siemens RUGGEDCOM ROS <5.9.1 — patch immediately. View advisory →
OT/ICS Security Intelligence

Protecting Industrial Infrastructure
from Cyber Threats

Advisories, threat reports, and sector briefings for OT/ICS security practitioners. Covering energy, water, manufacturing, and critical infrastructure.

6
Articles
5
Sectors
4
Content Types
Featured
Featured Threat Report

Volt Typhoon Pre-Positioning in US and UK OT Networks

China-nexus threat actor Volt Typhoon has systematically infiltrated operational technology networks across US and UK critical infrastructure sectors, establishing persistent footholds in energy, water, and communications systems for potential future disruption.

May 10, 2026 energywatercommunications
Latest Intelligence View all →
Threat Report high

Water Sector Cyber Threats 2026 — From Oldsmar to Nation-State Pre-Positioning

Water and wastewater systems face a growing and diverse cyber threat — from opportunistic attacks exploiting internet-exposed HMIs to sophisticated nation-state pre-positioning campaigns. This briefing covers the current threat landscape, attack vectors, and sector-specific defensive priorities.

May 22, 2026 · water
Advisory critical CVE-2026-20182

CISA ICS Advisory: Siemens RUGGEDCOM and SCADABr Remote Code Execution

CISA has released a critical ICS advisory covering unauthenticated remote code execution vulnerabilities in Siemens RUGGEDCOM network devices and SCADABr SCADA software, both widely deployed in energy and manufacturing environments.

May 14, 2026 · energy · manufacturing
Threat Report

Volt Typhoon Pre-Positioning in US and UK OT Networks

China-nexus threat actor Volt Typhoon has systematically infiltrated operational technology networks across US and UK critical infrastructure sectors, establishing persistent footholds in energy, water, and communications systems for potential future disruption.

May 10, 2026 · energy · water
Sector Briefing

OT Network Segmentation: Purdue Model, DMZ Design, and Historian Isolation

A practical guide to network segmentation in OT environments, covering the Purdue Reference Model, industrial DMZ architecture, data historian isolation, and the tradeoffs between operational access and security posture.

Apr 28, 2026 · energy · manufacturing
Threat Report critical

TRITON/TRISIS: The Malware Designed to Kill

TRITON is the only publicly known malware explicitly engineered to disable Safety Instrumented Systems—the last line of defense against industrial catastrophes. An analysis of its architecture, targeting of Schneider Electric Triconex controllers, and what it means for safety system cybersecurity.

Apr 15, 2026 · energy · petrochemical
Vuln Analysis

Modbus and DNP3: Inherent Security Weaknesses in Legacy Industrial Protocols

Modbus and DNP3 were designed for reliability and interoperability, not security. An analysis of the structural security weaknesses in both protocols—unauthenticated commands, lack of encryption, spoofing, and replay attacks—and the compensating controls available to practitioners.

Apr 5, 2026 · energy · water
Sector Coverage All sectors →
Energy
Electric utilities, generation, transmission & distribution
 💧
Water
Water treatment, wastewater, distribution systems
 ⚙️
Manufacturing
Industrial production, process manufacturing, automotive
 🛢
Petrochemical
Oil & gas, refining, chemical processing
 📡
Communications
Industrial comms infrastructure, private networks