Colonial Pipeline attack spotlights risks of geographically dispersed networks...

Via SC Magazine


John Cusimano, vice president at aeCyberSolutions, said that cybersecurity in the pipeline industry is “far behind that of other energy sectors,” noting that a common problem is “the lack of segmentation of the pipeline supervisory control and data acquisition networks, which “connect the pipeline control center to every terminal, pumping station, remote isolation valve and tank farm along the pipeline.”


“These are very large networks covering extensive distances but they are typically ‘flat’ from a network segmentation standpoint,” Cusimano added. “This means that once someone gains access to the SCADA network they have access to every device on the network.”


Read the entire article at https://www.scmagazine.com/home/security-news/ransomware/colonial-pipeline-attack-spotlights-risks-of-geographically-dispersed-networks/



Related: You Do Leak Detection, but Do You have Breach Detection?

by Paul Rostick, Chief Information Security Officer, aeSolutions



aeCyberSolutions can help develop, maintain and test IACS backups, along with an associated recovery plan. Check out an overview of our services at and more great articles and whitepapers at aesolutions.com/aecybersolutions