Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Five Eyes Urges Action on OT Security

January 14, 2025
Reading Time: 2 mins read
in News
Five Eyes Urges Critical Infrastructure to Choose Secure By Design OT Products

Critical infrastructure organizations have been urged to prioritize the security of their operational technology (OT) products by government agencies from the Five Eyes intelligence alliance and European partners. A joint advisory issued on January 13 provides key security considerations for OT owners and operators when purchasing OT products. The guidance focuses on ensuring that OT products follow secure-by-design principles, which are intended to reduce the likelihood of security breaches and improve overall cybersecurity resilience. The advisory emphasizes the importance of OT owners and operators choosing products from manufacturers that adhere to these security guidelines.

A major point of the advisory is the shifting of the cybersecurity burden onto OT manufacturers 

A major point of the advisory is the shifting of the cybersecurity burden onto OT manufacturers rather than operators. Although OT owners and operators face disproportionate costs in securing their environments, manufacturers have the greatest capacity to enhance the security of their products. By making security a priority in purchasing decisions, the advisory aims to create market incentives for manufacturers to implement more secure products. This shift is expected to lead to safer OT environments and a stronger cybersecurity foundation in critical infrastructure systems.

The advisory also highlights the need for OT owners and operators to move away from legacy systems, urging them to prioritize products that enforce secure-by-design principles. According to the US Cybersecurity and Infrastructure Security Agency (CISA), such decisions would encourage manufacturers to supply products with integrated cybersecurity measures that address current and future threats. Jonathon Ellison from the UK’s National Cyber Security Centre (NCSC) reiterated the importance of these guidelines for OT system operators, stressing that security should not be treated as an optional feature but as a necessary requirement for all products.

The guidance also outlines several essential secure-by-design features that OT products should include, such as eliminating default passwords, implementing phishing-resistant multifactor authentication, and ensuring products are resilient to cyberattacks. Furthermore, manufacturers should offer easy-to-follow patching and upgrade processes and provide a comprehensive vulnerability management regime to prevent exploitable flaws. Additionally, the advisory suggests that manufacturers provide a thorough threat model detailing how the product could be compromised, helping to ensure the security of OT systems against evolving cyber threats.

Reference:
  • IRS Relaunches Identity Protection Personal Identification Number Program
Tags: Cyber NewsCyber News 2025Cyber threatsIRSJanuary 2025
ADVERTISEMENT

Related Posts

New CISA Budget Slashes Staff And Funds

New CISA Budget Slashes Staff And Funds

June 3, 2025
New CISA Budget Slashes Staff And Funds

Microsoft and CrowdStrike Align Hacker Names

June 3, 2025
New CISA Budget Slashes Staff And Funds

Aussie Ransom Reporting Rules Now In Effect

June 3, 2025
Senators Urge CSRB Return For Salt Typhoon

Senators Urge CSRB Return For Salt Typhoon

June 2, 2025
Senators Urge CSRB Return For Salt Typhoon

Authorities Takedown Malware Hiding Tools

June 2, 2025
Senators Urge CSRB Return For Salt Typhoon

Alleged Conti and Trickbot Leader Unmasked

June 2, 2025

Latest Alerts

Fake FB Ban Fix Extension Steals Accounts

Actively Exploited Chrome V8 Flaw Patched

DevOps Servers Hit By JINX0132 Crypto Mine

Linux Core Dump Flaws Risk Password Leaks

GitHub Code Flaw Replicated By AI Models

Google Script Used In New Phishing Scams

Subscribe to our newsletter

    Latest Incidents

    Cartier Data Breach Exposes Client Info

    White House Chief of Staff’s Phone Hacked

    The North Face Hit By 4th Credential Hack

    Covenant Health Cyberattack Shuts Hospitals

    Moscow DDoS Attack Cuts Internet For Days

    Puerto Rico’s Justice Department Cyberattack

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial