Capula will be sponsoring and speaking at the forthcoming Institute of Engineering and Technology (IET) Cyber Security for Industrial Control Systems event, taking place in London and online on 8-9th September 2022.
With the rapid advancements in technology and connectivity, these attacks are becoming increasingly complex and difficult to detect. Cybersecurity, therefore, needs to be a top priority for companies seeking to identify new risks and increasing their resilience to the evolving threats to critical systems.
Our very own Ric Derbyshire is on the programme, talking about PLC Programming Practices, and you can also hear from the National Cyber Security Centre, Health and Safety Executive, Ofgem, the UK Cyber Security Council and many others.
Having recently achieved a PhD for his research conducted at Lancaster University, Dr Ric's will be presenting a talk titled "PLC Programming Practices: An Open Door for Enumeration, Exploitation, and C2".
Ric will begin by briefly discussing the difficulties of precisely manipulating the operational process during an OT cyber attack and why many FUD-based demos are unrealistic.
He will then go on to present the research on a novel vulnerability class, which intersects poor PLC programming practices and memory management, and describes how this can be exploited by adversaries to greatly facilitate reconnaissance, process manipulation, and even command and control within an OT environment.
If you havent already secured your place - you can do so here IET Cyber Security for Industrial Control Systems (theiet.org)