PLC | Abhisam

Log4j vulnerability and ICS security

As you may already be aware, a new critical remote code execution vulnerability (CVE-2021-44228) affecting Apache Log4j software library versions 2.0-beta9 to 2.14.1 has been discovered. What is the Log4j vulnerability? Log4j is used in many websites, consumer and enterprise services and applications—as well as in operational technology products, which includes even Industrial Control Systems such as DCS, SIS, PLC, SCADA, Process Historians and similar hosts and controllers. For …

Industrial cyber security Lifecycle- top 10 controls to secure your IACS

The Abhisam Industrial Cyber Security Lifecycle shows the top 10 controls needed to achieve robust cyber security for your Industrial Automation, Control and Safety System (IACS). IACS is a broad term for control and automation systems such as DCS (Distributed Control Systems), PLC (Programmable Logic Controllers), SCADA (Supervisory Control and Data Acquisition Systems), SIS (Safety Instrumented Systems), HIPPS (High Integrity Pressure Protection Systems), BMS (Burner Management Systems) and others. …

Safety Instrumented Systems- Design

Many process plants handle large amounts of hazardous materials (including flammable, explosive or toxic chemicals) at high temperatures and pressures (or in vacuum conditions)via complex processes. Hence there is a risk that there could be a disaster if something goes wrong and we could have fires, explosions and toxic chemical releases that can harm people and the environment. These incidents also damage assets and cause large scale destruction. In …

Scada Cyber Security- Safeguarding Critical Industrial Systems

What is SCADA cyber security? SCADA cyber security refers to cybersecurity of Supervisory Control and Data Acquisition systems. These cyber attacks on SCADA that can not only damage the system itself, but also lead to consequential damages to plant and equipment, as well as cause hardship to people due to contaminated water supplies, or failure of the electrical supply to homes, industries and businesses, or shortages of critical items …

Industrial Control Systems Cyber Security Advanced Training

Industrial Control Systems Cyber Security Training Looking for Industrial Control Systems Cyber Security Advanced Training? Then this Abhisam industrial control systems cyber security certification course is the one that you’re looking for. Composed on several modules that include everything from Basic Concepts of Industrial Control Systems as well as Basic Concepts about cyber security, this Abhisam training course has them all. The Advanced Module of this course includes current …

Supply chain attacks can use counterfeit switches

Supply Chain Attacks- ICS Security implications

Supply Chain attacks are something to watch out for In the recently published Abhisam Industrial Cybersecurity Report, we had mentioned supply chain attacks, as something to watch out for in 2024. We never imagined that we would be so right. These supply chain attacks are pretty broad in scope and are not just related to the Industrial Control System devices, such as DCS controllers or SIS Logic Solvers but …

NIST Guide to ICS Security- Call for comments

Update: NIST has released the draft now. Please see here for news on the latest NIST 800 Rev 3 Draft. The National Institute of Standards and Technology (NIST) that is a part of the US Department of Commerce has invited public comments to update the existing NIST Guide to Industrial Control Systems (ICS) Security, SP 800-82 Rev 2 to SP 800-82 (Rev 3). The deadline for comments is May …

Cyber security – Oil and Gas industries

This paper related to cyber security oil and gas industries, is available as a part of the Abhisam Industrial Cybersecurity report, which can be downloaded now. Author: H Sreedhar. Recent History of Automation in Oil & Gas The Oil and Gas industry (O & G for short) has been a pioneer in embracing digital technology. It was one of the first industrial sectors to transition to Distributed Control …

Best VFD Training Courses

Taking the right VFD Training Courses is essential to mastering this technology and getting benefits from it. These training courses should be self paced, with easy explanations using graphics and animations and should not be just a video of a guy speaking. What is this about? As you probably already know, VFD is an acronym for Variable Frequency Drives. They are used to start, control and drive mainly AC …

ICS Security training course gets advanced module

Abhisam is pleased to announce that the popular ICS security training course, which is available as an e-course online, will now have an advanced module that can be accessed by all current learners and GOLD members. This will have many sub modules such as concepts of Kill Chains, the MITRE ATT&CK framework for ICS, Honeypots for Industrial Automation and Control systems and more. Cybersecurity is a growing concern for …