● 33 entries
OT / ICS / IoT
- Air-Gapped NetworkA network that is physically and logically isolated from other networks, especially the internet, to protect highly sensitive systems such as ICS, classified networks, or vaults.
- BACnetA building-automation and HVAC protocol standardized as ASHRAE 135 / ISO 16484-5 — widely deployed in HVAC, lighting, fire-alarm, and access-control systems in commercial buildings, historically with very weak authentication.
- Bluetooth LE SecurityThe pairing, encryption, and privacy mechanisms defined by the Bluetooth Core Specification for Bluetooth Low Energy devices.
- Cyber-Physical System (CPS)An engineered system that integrates sensors, actuators, and computation to monitor and control physical processes, where digital and physical layers are tightly coupled.
- Distributed Control System (DCS)An integrated ICS architecture in which controllers, operator stations, and engineering tools are distributed across a plant and tightly coupled by a vendor backbone.
- DNP3Distributed Network Protocol 3, an event-driven ICS protocol used in electric utilities, water, and oil & gas to communicate between SCADA masters and remote outstations.
- Firmware Over-the-Air (OTA)A mechanism for delivering and installing firmware updates to remote devices through wireless or networked channels, without physical access.
- FrostyGoopAn ICS-specific malware discovered by Dragos in 2024 that abuses Modbus TCP to disrupt energy and heating control systems, attributed by Dragos to a Russia-linked actor and tied to a January 2024 attack on a Ukrainian municipal heating utility.
- Havex (Dragonfly RAT)An ICS-aware remote access trojan used by the Dragonfly / Energetic Bear / Berserk Bear group between 2013 and 2014 in espionage campaigns against Western energy and manufacturing sectors, notable for scanning OPC servers from inside victim networks.
- Human-Machine Interface (HMI)Software or panel that lets operators visualize process state and issue commands to PLCs, DCS, and SCADA systems.
- IEC 61850An international standard for communications inside electrical substations, covering object-oriented data models (LNs), high-speed messaging (GOOSE), sampled-values measurements (SV), and MMS-based client/server traffic.
- IEC 62443The IEC family of standards for the cybersecurity of industrial automation and control systems, addressing asset owners, integrators, and product suppliers.
- Industrial Control System (ICS)An umbrella term for systems that automate and supervise industrial processes, including SCADA, DCS, PLCs, RTUs, and safety controllers.
- Industroyer / CrashOverrideModular ICS malware used in the 2016 Ukraine power-grid attack and updated as Industroyer2 in 2022, capable of speaking native grid protocols to trip substations.
- Industroyer2 (CrashOverride 2)A 2022 evolution of the Industroyer/CrashOverride electric-grid malware, attributed by ESET to Sandworm and used in an unsuccessful April 2022 attempt to cut power in a Ukrainian regional utility.
- IoT BotnetA network of compromised Internet-of-Things devices remotely controlled to launch attacks such as DDoS, credential stuffing, click fraud, or cryptomining.
- IoT SecurityThe discipline of protecting Internet-of-Things devices, gateways, networks, and cloud services from compromise, given their scale, constrained resources, and long lifetimes.
- LoRaWAN SecurityThe end-to-end key, join, and message-protection model defined by the LoRaWAN specification for low-power wide-area IoT networks.
- Matter ProtocolAn IP-based smart-home interoperability protocol launched by the Connectivity Standards Alliance (Apple, Google, Amazon, Samsung) in 2022, with built-in certificate-based device identity, mandatory encryption, and PAKE-secured commissioning.
- Mirai BotnetAn IoT malware family first seen in 2016 that recruits routers, cameras, and DVRs through default credentials and was used in the Dyn DNS DDoS that broke much of the U.S. internet.
- ModbusA simple, openly documented industrial protocol for polling registers and coils on PLCs, RTUs, and field devices, available over serial (RTU/ASCII) and TCP.
- MUD (Manufacturer Usage Description, RFC 8520)An IETF standard for IoT devices to publish a machine-readable description of their intended network behavior, which routers and switches can use to automatically constrain the device to its expected communication patterns.
- OPC UAOPC Unified Architecture, a service-oriented industrial protocol with built-in authentication and encryption used to exchange semantic data across OT and IT systems.
- Operational Technology (OT)Hardware and software that monitor and control physical processes, devices, and infrastructure such as factories, power plants, and utilities.
- Pipedream / IncontrollerA modular ICS-attack toolkit disclosed by U.S. CISA, Dragos, and Mandiant in April 2022 — attributed by some to a Russian state actor — capable of discovering and disrupting Schneider Electric, OMRON, and OPC UA-based industrial controllers.
- PROFINETAn industrial Ethernet protocol standardized by PROFIBUS & PROFINET International for real-time communication between PLCs, drives, and field devices.
- Programmable Logic Controller (PLC)A ruggedized industrial computer that executes deterministic control logic to read sensors and drive actuators in real-time processes.
- Purdue Enterprise Reference ArchitectureA layered reference model for industrial networks that segments business IT from process control, widely used to design ICS network segmentation.
- Safety Instrumented System (SIS)An independent control system that brings a process to a safe state when monitored variables exceed defined limits, protecting people, environment, and assets.
- SCADASupervisory Control and Data Acquisition systems that gather telemetry from remote field devices and let operators monitor and command large industrial processes.
- StuxnetA highly sophisticated 2010 worm that sabotaged Iran's uranium-enrichment centrifuges by reprogramming Siemens PLCs, widely attributed to the United States and Israel.
- TRITON / TRISISMalware discovered in 2017 that targeted Schneider Triconex Safety Instrumented Systems at a Saudi petrochemical plant, attributed to a Russia-linked actor.
- Zigbee SecurityThe set of cryptographic and network controls that protect Zigbee mesh networks of low-power IoT devices, based on IEEE 802.15.4 and AES-CCM* keys.