))
FBI Alerts, OT Vulnerabilities, and What Comes Next
Manage episode 504164402 series 3519015
Content provided by Industrial Cybersecurity Insider. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Industrial Cybersecurity Insider or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
In this episode, Craig and Dino break down the FBI’s latest cybersecurity advisory and what it means for industrial organizations.
From Cisco hardware vulnerabilities on the plant floor to the widening gap between IT and OT security teams, they address the critical blind spots that attackers often exploit.
They discuss why manufacturing has become ransomware’s “cash register,” the importance of continuous monitoring and asset visibility, and why every organization must have an incident response plan in place before a crisis.
This episode is packed with real-world insights and actionable strategies. It's a must-listen for CISOs, CIOs, OT engineers, and plant leaders safeguarding manufacturing and critical infrastructure.
Chapters:
- 00:00:52 - Welcome to Industrial Cybersecurity Insider Podcast
- 00:01:21 - A New FBI Advisory on Nation-State OT Threats
- 00:02:37 - Cisco Hardware on the Plant Floor Targeted in Advisory
- 00:03:18 - The IT/OT Disconnect: OT Assets are Often Invisible to InfoSec Teams
- 00:04:19 - The Awareness Gap: Critical Security Alerts Fail to Reach OT Operations
- 00:04:54 - The OT Cybersecurity Skills Gap and Cultural Divide
- 00:07:32 - Why All Manufacturing is Critical, Citing the JBS Breach
- 00:08:37 - The Staggering Economic Cost of OT Breaches
- 00:09:33 - The "Cash Register" Concept: Why Attackers Target Manufacturing
- 00:10:29 - OT as the New Frontier for Attacks on Unpatched Systems
- 00:11:28 - The "Disinterested Third Party": When OEMs See Security as the Client's Problem
- 00:12:31 - The Foundational First Step: Gaining Asset Visibility & Continuous Monitoring
- 00:13:53 - The Impracticality of Patching in OT Due to Downtime and Safety Risks
- 00:15:25 - Academic vs. Practitioner: Why High-Level Advice Fails on the Plant Floor
- 00:18:25 - The Minimum Requirement: A Practiced, OT-Inclusive Incident Response Plan
- 00:18:58 - Why CISOs Must Build Relationships with Key OT Partners
- 00:22:46 - Practice, Partner, and Protect Now
Links And Resources:
- Want to Sponsor an episode or be a Guest? Reach out here.
- Industrial Cybersecurity Insider on LinkedIn
- Cybersecurity & Digital Safety on LinkedIn
- BW Design Group Cybersecurity
- Dino Busalachi on LinkedIn
- Craig Duckworth on LinkedIn
Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!
90 episodes
Share
