Secolve Update: November 2023

Can you believe how fast November has gone? With the end of the year fast approaching, the team have been busy as ever on OT security projects.

There have been two major cyberattacks in critical infrastructure disclosed this month - the first in Australia affecting logistics company,?DP World, and the second, an attack on Denmark's energy grid back in the spring. In both cases it's been said that failing to patch known vulnerabilities is the cause for the attackers getting into the network.

Patching has been one of our areas of focus in applying good cyber hygiene in OT environments, during Cyber Security Awareness Month and CISM, the Government's inaugural Critical Infrastructure Security Month. OT cyber security is a complex field and that’s why it is so important to take a step back every now and then and consider?the tasks that can sometimes be overlooked. We never like to hear about an attack on one of our critical infrastructure organisations and this is why we set up Secolve as a specialised organisation focusing on CI cyber security – to ensure that we can uplift and strengthen the community as a whole.

This is why we are so passionate about OT-SAT, our OT security awareness training platform, which slots neatly into the CISO's cyber security program and security awareness training through a platform. OT-SAT can cater to the various compliance requirements, tailored, role-based, annual and new starter training, with an ability to measure results. We know everyone in critical infrastructure?organisations play such a crucial role,?so a platform that allows you to train anywhere, anytime, is an effective way to help build that cyber safety culture. Reach out for a demo before the end of the year if you want to learn more!

And finally, with only a few weeks until the end-of-year break, we are capping it off with the first installment of our new webinar series, starting with a fireside chat with Recorded Future. This free webinar about the threat intelligence space in critical infrastructure is one you won’t want to miss. Register now?and get this bookmarked in your diary.??

- Belinda?

It's that time of the year where there aren't many public get-togethers,?but a lot of vendor events?and end-of-year celebrations.

We will ramping up in the new year and organising?more industry lunch and learns and meetups in cities around Australia, so make sure you follow us on LinkedIn to keep up-to-date with everything upcoming!

There’s a lot that's happened in the OT security space, this month. Here is a summary of some of the latest news articles and industry news.

Earlier this month, DP World Australia temporarily ceased land operations in Melbourne, Sydney, Brisbane, and Fremantle as a result of a cyber security incident, impacting the transportation of goods in and out of the country. Read more about the incident here.

The Australian Government released their 2023-2030 Australian Cyber Security Strategy -?a?roadmap that will help realise the Australian Government’s vision of becoming a world leader in cyber security by 2030. The Strategy is supplemented by their Action Plan which?documents the key initiatives that will commence over the next two years to drive towards achieving their strategy goals.

Denmark's critical infrastructure experienced the largest cyberattack in the country's history this spring, with 22 energy companies breached in just a few days, according to a newly published report from SektorCERT, Denmark's state-funded organisation handling cyber incidents in the critical sector.

Secolve has collaborated with Industrial Cyber and other industry experts to present this authoritative handbook,emphasising the industrial cyber security challenges and solutions for the manufacturing sector. You can download the handbook here.