GRU Sandworm Probes Energy Grid with Living-Off-The-Land Techniques While Battery Storage Systems Raise Red Flags and Fortinet Auth Bypass Exploited Within Days of Disclosure
Strong roundup on OT exposure risks with Sandworm. The battery storage system angle is underrated, those BESS deployments are basically unaudited IoT at grid scale. I've watched utilities rush deployment without hardened vendor access controls, so when you mentioned obfuscation as armor, that clicked hard for me becuase it's the only viable mitigation when patch cycles lag physical rollout.
I am concerned with the lack of OT cybersecurity attention from organization and regulators alike. It seems to be getting put off. Concerning none the less.
Strong roundup on OT exposure risks with Sandworm. The battery storage system angle is underrated, those BESS deployments are basically unaudited IoT at grid scale. I've watched utilities rush deployment without hardened vendor access controls, so when you mentioned obfuscation as armor, that clicked hard for me becuase it's the only viable mitigation when patch cycles lag physical rollout.
I am concerned with the lack of OT cybersecurity attention from organization and regulators alike. It seems to be getting put off. Concerning none the less.