Now that I’m back in the US, I’ve dusted off the equipment and rebooted the This Month In Control System Security podcast. Still need to set up the studio and get the Telos One working for high quality telephone sound, but I’ve got two indepth interviews in the November edition.
Subscribe to the podcast in iTunes
Show Content Overview
EnergySec / NESCO
EnergySec recently received a $5.8M grant to form and run a National Electric Sector Cyber Security Organization (NESCO). This is a big chunk of money for what was previously a volunteer effort. They haver hired people and are gearing up for some tough challenges.
I spoke with two EnergySec executives, Patrick Miller and Chris Jager, about the history of EnergySec, how it will be structured or restructured with the new NESCO mission, and early thoughts on how it will meet the three NESCO objectives. We spent some time talking about the overlap and differences between NESCO and ICS-CERT, ISAC’s and other federal initiatives. We also cover how they do information sharing and how they will try to increase public/private partnerships where other efforts have failed.
Nessus Beyond The Defaults
Warning – – This is a technical interview with:
- Jason Holcomb, Senior Consultant and Researcher with Digital Bond
Nessus is the most popular security scanning tool in the control system community, but most just select the default configuration and safe checks. There are much better ways to use Nessus if you dig into some of the configuration options.
- Simple example of adding a SID to test Oracle default accounts.
- Web application testing for web servers on historians, RTU’s etc.
- Integrating Nessus with Hydra for intelligent password cracking
- Low impact credentialed scanning to identify ports/services, missing patches, USB sticks, modems and more. Some good NERC CIP audit techniques here.
- Credentialed Scanning Summary of Missing Microsoft Patches Plugin