With the USA entering into a war with Iran, which tech might we need to worry about? Iran has a sophisticated cyber warfare unit that has successfully hit USA, UK and Israel water systems in the recent past. So much so that a security bulletin was published by CISA last December and delivered to critical infrastructure managers.
The devices that should have been secured are PLC’s and IoT. Did the IT work get done to secure those systems? IT Professionals and MSPs should find out ASAP.
The problems are:
- Default passwords
- Weak passwords
- Blank passwords
The most difficult part might be getting your client to disclose where all of the PLC’s and IoT’s are and then giving you access to them. The bulletin says, “internet facing” but we know how that goes. Any internet facing device might be the intrusion point but from there into the rest of the network is often not a difficult jump. However, Internet facing should still be the starting point. Then address the rest.
Remember some of this equipment could be very old.
Here’s the PDF that should have been acted upon last December.
Demonstrate Leadership
If you’re an MSP, this is your moment to demonstrate your ability to be proactive and completely a project like this in a timely manner. I’m hearing a lot about how MSPs sales are difficult and slowing. This is how you reverse that trend for yourself.
One thought on “Tech to worry about”