Research &
Intelligence

Your trusted source for the latest ICS vulnerability research, industrial threat intelligence, and educational information about best practices for IIoT, ICS and SCADA security.

In this educational webinar led by Doug Wylie, SANS Director of the Industrials & Infrastructure practice area and previously Director...

The security research team at CyberX demonstrates a stealthy hack at Black Hat Europe 2017 that shatters the myth of...

In this episode of the Unsolicited Response Podcast, host Dale Peterson talks with Phil Neray of CyberX about the Global...

A data-driven analysis of vulnerabilities in real-world OT networks based on analyzing 375 industrial control networks via Network Traffic Analysis...

In this educational SANS webinar led by Mike Assante, SANS Director of Critical Infrastructure & ICS/SCADA Security, we’ll explore: •...

In 2015, CyberX’s threat intelligence team reverse-engineered BlackEnergy3 and discovered it was designed to perform exfiltration of sensitive information from...

Join Mike Assante, SANS Director of Critical Infrastructure & ICS — described in Wired as “one of the most respected...

Months before Mirai malware was found to be infecting IoT devices, CyberX's threat intelligence team discovered RADIATION. Targeting surveillance cameras...

Researchers from CyberX's threat intelligence team have uncovered a remote code execution (RCE) vulnerability in the Allen-Bradley MicroLogix 1100/1400 families...

The U.S. Department of Homeland Security (DHS) reports that cyber incidents at energy facilities increased by nearly a third over...

CyberX has discovered critical vulnerabilities in a popular software framework used in hundreds of thousands of IIoT and industrial control...

S4x17 session discussing ICS 0-days and RADIATION, a new form of IIoT DDoS malware discovered by our threat intel team.

The CyberX Threat Intelligence team has discovered numerous zero-day vulnerabilities in Programmable Logical Controllers (PLCs) and industrial equipment, ranging from...

CyberX's threat intelligence team was the first to report that the Mirai attack on Brian Krebs' website used GRE (Generic...

The WannaCry and Not Petya attacks resulted in billions of dollars in financial losses from disrupted production operations worldwide. Nearly...