Please update your browser's security settings.
To maintain the highest security standards, we will be disabling support for browsers using TLS 1.0. Learn more and upgrade your browser here.


Entries from October 1, 2010 - October 31, 2010

Red Tiger at BlackHat Abu Dhabi

For those of you that could not make the BlackHat event in Vegas earlier this year, the conference is coming to Abu Dhabi in the second week of November. We have been invited to present our paper "Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters" at this event, and based on the response that we received in Vegas, this should be a very educational and fun topic.

The conference will be held on November 8-11, and more information is available at the BH web site:

It is not too late to sign up for the event, and check out the other training options available at the conference as well. If you end up making it to Abu Dhabi for this event, send us a message ( so we can meet up while at the event. If you can not make the conference, but still would like a PDF version of the presentation, drop us a line, and we can send you a link to download the slides.

_ Jonathan

New SANS SCADA APT Webcast and White Paper

Earlier this week, we participated in a webcast with McAfee and Nitro Security that specifically addresses Advanced Persistent Threats within SCADA and Process Control Systems. We were up first and kicked off the webcast by defining what is different about these new threats, how they make initial intrusion into the network, then how they morph, evolve, and proliferate through the environment. We addressed how to locate APT threats, and laid out some tips for limiting the chance of infection. Next McAfee and Nitro Security each talked about new advances in cyber security technology that gives system administrators more tools to detect and root out these threats.

The link to the webcast is:

We will be re-recording the webcast on November 3rd, so if you missed the original session, you can either participate on the next live recording on November 3rd, or stream it back later at your convenience. We will also be publishing a new white paper through the SANS Institute that will be released shortly after the next webcast recording.

_ Jonathan

SCADA Security Advanced 5-day: Ottawa 2010

I am very pleased to announce that we are set to offer the SCADA Security Advanced 5-day course in Ottawa from November 15th to the 19th. This internationally recognized course is sought after by members of elite security services the world over, and is the leading edge on SCADA, DCS and Process control security.

This course is truly one of a kind. Having together in one room PLC's, RTU's, embedded devices running XP, embedded QnX systems, SCADA applications, ModbusTCP, and other OPC traffic on a single network, then to have our students scan, assess and test the security of these devices is phenomenal.

On top of all this wired network, we have also assembled some 900mhz, Zigbee, Rugged WI-FI, Smartgrid Mesh nodes and other wireless devices that are found in the field, showing off best practices to securing these devices and to better serve your consumers.

For Five days we are going to be looking at security from every possible angle. Pointing out both the "traditional" to the "unconventional" security threats to these networks and what we can do to defend against attacks. So if you are eager to learn all about Automation Security, expand your technical skill set, or just want to get behind the headlines of Aurora, Mariposa, and Stuxnet, this is the course for you.

If you would like to know more about the course, check out the outline found at, or contact us directly at

Hope to see you there!


Share This Page