Today we announce $200 million in Series D
#funding
, further validating the criticality of protecting OT with OT-specific approaches. We're thrilled to make
#ICS
#OT
cybersecurity more accessible around the world. Read more here:
#cybersecurity
#SeriesD
Today Dragos announces the completion of its Series B financing raising an additional $37M to fuel our rapid growth and mission to safeguard civilization.
You don't want to miss this - Dragos Director of Incident Response
@hacks4pancakes
speaks with
@ISMG_News
to discuss the increasing
#OTsecurity
risks to industrial environments & how organizations can tackle this with 5 critical
#cybersecurity
controls:
Dragos's own
@hacks4pancakes
has been recognized as a 2021 Difference Maker by the
@SANSInstitute
. The SANS Difference Makers Awards honor individuals, teams, & groups who have made a significant impact in
#cybersecurity
. Well done, Lesley Carhart!
Dragos Principal Industrial Incident Responder Lesley Carhart (
@hacks4pancakes
) talks with
@CSOonline
on growing threats in the energy, water, & telecom sectors & the challenges organizations face in detecting & defending against them.
#ICSCyberSecurity
Today we release 3 new research whitepapers (and infographics for folks to use) on industrial control threats, vulnerabilities, and lessons learned in incident response and hunting. These cover our lessons learned from 2017.
#ICS
We pay our interns above market rates and have found some of our best employees that way. We only take on interns when we can dedicate time to teaching them, but by teaching we also benefit and morale increases.
If Dragos finds threats in ICS networks, no matter who we think it is, no one gets a heads up. I.e. there are no “friendly” nations when it comes to targeting civilian infrastructure. They all shouldn’t be there. Luckily we don’t do attribution either so - all just threats to us.
"Why Russian Hackers Aren't Poised to Plunge the US Into Darkness" > great coverage by
@washingtonpost
with an interview of Dragos' director of intelligence
@cnoanalysis
Today, we're unveiling a public dashboard of ICS-focused activity groups that aim to exploit, disrupt, and potentially destroy industrial systems. Each week this month, we'll release new content discussing these adversary details that you can read here:
Whenever events happen where there’s serious potential for loss of life or injuries it’s always best to avoid speculation and just send well wishes to those dealing with the difficult situation. Jumping to conclusions or sideline speculation can be distracting.
The Dragos Intelligence team has identified a new activity group, RASPITE, that targets electric utility sectors in the US, Middle East, Europe, and East Asia. Read the adversary details here:
It's release day for our 2020
#ICS
Cybersecurity Year in Review report! We've launched a new interactive web page to enable the
#industrial
community to visualize data & key takeaways. Big trend: a 3X rise in ICS-focused threats. More:
#2020ICSYIR
#infosec
Our CEO
@RobertMLee
was on
@CBSThisMorning
today discussing cybersecurity for the electric grid and artificial intelligence. Machine learning is a powerful tool and holds value for grid operations, but for cybersecurity is just a tool; lots of A.I. cybersecurity hype out there.
If you missed the SOLD OUT
@SANSInstitute
Women in Cybersecurity Forum this past Friday, here's a link to a full replay. Listen to our very own
@hacks4pancakes
share tips on running a successful virtual conference on a tight budget
#ICS
#ICScybersecurity
Today, we released our 2019
#ICS
Year in Review reports, detailing our team’s analysis of the
#ICS
threat landscape,
#ICS
vulnerabilities, and industry observations gained from in-field engagements. Read them here:
#ICScybersecurity
#ICSYIR19
We are excited to announce our acquisition of NexDefense, and with it, the release of two free tools to make
#ICS
security more accessible to community members beginning their paths to more effective
#ICS
#cybersecurity
. Learn more here:
“Industrial Control Threat Intelligence” - by
@cnoanalysis
> new paper from Dragos on what threat Intelligence is, how to use it, and how to measure it.
We are excited to announce the opening of the newest Dragos office in Houston, TX! Join us for an open house on April 15th to tour our space, meet team members, and learn about how we're making
#ICS
#security
accessible to the greater community!
Dragos Announces Record-Setting $110M Investment in Industrial Cybersecurity with Series C Funding > thank you to our customers & partners who’ve helped us to get to this point, we look forward to accelerating our growth and continuing our mission with you
@jfslowik
's new whitepaper breaks down CRASHOVERRIDE, the first publicly-known
#malware
impacting electric grid operations, and reveals previously unavailable data. Read it here:
Since early 2022, Dragos has been analyzing PIPEDREAM
#malware
, the seventh ever
#ICS
specific malware. PIPEDREAM was developed by a new
#cyberthreat
group we identify as CHERNOVITE. Learn more about our analysis and what you can do to mitigate risk:
Today we launched Dragos Academy, a comprehensive
#training
program available to Dragos customers & partners that strengthens practitioners’
#ICS
#OT
security skills and helps them accelerate the time-to-value of our
#cybersecurity
solutions. Learn more:
Excited to announce our expansion into Australia & New Zealand with a new office opening in Melbourne & investment from former Australian PM,
@TurnbullMalcolm
. Read more about the details, including comment from our CEO
@RobertMLee
here:
#otcybersecurity
In 2020 we grew annual recurring revenue (ARR) by over 80% & increased the number of platform customers by over 200% year-over-year + we hired 112 new folks, continued to diversify our industry mix & began a global expansion. Here we come 2021! Read more:
We're thrilled to announce our new managed network visibility & threat hunting service for ICS/OT - Neighborhood Watch! It will allow our customers to augment their security teams with our own expert analysts as an extra layer of defense.
#icswatchmen
#mth
Dragos initially learned of a new
#ransomware
variant, “Snake” or “EKANS,” on January 6, 2020 that has the functionality to forcibly stop a number of processes, including multiple items related to
#ICS
operations. Read the full, public report here:
If you think
#ICS
cybersecurity is the only thing our team is good at...we have news for you. Presenting: the Dragos Spooky Operations team. Happy Halloween!
#BOOyah
Announcing a public-private partnership: Dragos Neighborhood Keeper will be used by the
@NSAGov
and
@CISAgov
as Trusted Advisors to bolster OT cybersecurity in a way that respects & protects data integrity and anonymity while providing meaningful insights.
Day 1 of "Assessing, Hunting, and Monitoring ICS Networks" kicks off today! In this module, students learn about the various types of ICS environments, their functions, and compositions. We are looking forward to an exciting week!
We’re chipping away through the real-world
#ICS
incident from the
#S4x19
Detection Challenge and having a blast! To learn more, come see the Dragos team present on the S4 main stage Thursday, January 17th.
@dan_gunter
@SubtleThreat
Our exceptional team of industrial security practitioners helps defend the world’s critical infrastructure through global collaboration and our intelligence-driven
#ICS
#cybersecurity
platform. Read more about our $37M Series B:
Today, we are excited to announce our partnership with
@splunk
! Together, we will work to enable better threat detection for
#industrial
organizations. Learn more at
#ICScybersecurity
#ICS
Some nuance needed on TRISIS/TRITON and some clarification to help folks with some questions. First and foremost, we think the FireEye report rocks and that their team handled it very well.
Threat proliferation is an issue that multiple sectors are now facing - the threat activity group Xenotime (TRISIS) is now targeting the electric sector. Read more here:
Excited to welcome
@vajkat
to the Dragos team! She’ll be on our intel team putting her experience in ICS and vulnerabilities to good use for our customers. Welcome!
Today,
@MITREcorp
announced an
#ICS
-ATT&CK framework that organizes and codifies malicious threat behaviors affecting
#industrial
control systems. Dragos is proud to be a key contributor to this framework. Read the PR here:
A lot of questions on the DHS advisory today (TA18-074A). This activity has been tracked and reported by us previously as DYMALLOY. The DHS advisory is a good amplification of the ongoing activity but does not represent a new threat activity group.
Congratulations to all those who participated in our first-ever CTF at
#DISC2021
! We had 161 teams participate, with 7 teams completing all of the challenges - Kudos to the top 3 winners from:
@Equinor
@CSAsingapore
, and
@singaporetech
!
Dragos' 2018 Year in Review reports provide industrial cybersecurity defenders with recommendations for stronger defenses via lessons learned from our team's first-hand experience tracking, hunting, and responding to adversaries throughout the year.
Today we announce our Series C funding, "...an investment by industry, for industry," says CEO
@RobertMLee
. Some of the world’s largest corporations helped make this the most substantial investment-to-date in the
#ICS
#OT
#cybersecurity
sector. More here:
Today Dragos releases its adversary page on ELECTRUM, the group behind the CRASHOVERRIDE malware used in the 2016 attack on Ukraine’s power grid. The group remains active.
#ICS
We love working with the
#ICS
community! Dragos was engaged by Orlando Utilities Commission to be proactive with their security - here's the challenge coin they requested to commemorate our partnership (shared with permission).
#ICS
#electric
Neighborhood Keeper provides access to
#ICS
threat detection and shared intelligence to smaller utility providers, and we're proud to support it with the Dragos Platform. Learn more here:
#neighborhoodkeeper
Read our assessment of yesterday's alert by the CISA regarding a
#ransomware
incident at a U.S. gas pipeline operator. We discuss the extent of potential
#ICS
impacts & steps operators should take to proactively defend against potential targeting.
Dragos is pleased to be a sponsor of the AusCERT2022 Conference, to be held on 11–13 May at The Star Hotel, Gold Coast. Stop by booth S44 to see a demo of the Dragos Platform and get a free copy of our 2021
#ICS
#OT
Year In Review report. Learn more:
Want to join Dragos and make a difference for one of the best communities out there? Check out our job postings; QA, Systems Engineer, and Tech Writer positions added:
Several data points confirm a targeted cyber intrusion leveraging malware against the NPCIL of India and the KKNPP plant. Dragos' analysis identified remote access capabilities specific to the IT environment, but no ICS-specific components. Read more:
And, that's a wrap on the 6th Annual Dragos Industrial Security Conference (
#DISC2022
) - thanks to all who came out to join us. We look forward to seeing you next year! Register your interest at: .
#ICSsecurity
#OTsecurity
#DISC2023
The Dragos team is here kicking off the
#s4x19
#ICS
Detection Challenge! Today, we’ll analyze the 130 GB of data received and use the Dragos Platform’s asset identification capabilities to get a comprehensive view of the challenge environment. Stay tuned for more!
Looking to test your industrial
#cybersecurity
skills? Play the new Dragos &
@splunk
"Boss of the SOC" virtual challenge - designed to improve skills of
#ICS
#OT
security practitioners using real-world data and incidents. Learn more:
#BOTS
#SplunkPartners
The Dragos Industrial Security Conference (DISC) shirt this year; designed by
@ron_fab
DISC returns November 5th (same date every year) at our Maryland HQ. More swag to come...
Looking for a new role at a new company? Dragos CEO
@RobertMLee
talks about our company mission, what values define our corporate culture, and how we seek to be an inclusive, equitable employer of choice in industrial
#cybersecurity
: .
#remotework
#Hiring
Q&A with
@hack4pancakes
"People think ICS environments don't change but they do - Which is why we take an analytics based approach to threat detection and focus on the more complex adversary behaviors. " Case Studies in Industrial/OT Cybersecurity - Part 2 at
#ARCForum
Julian was the original incident responder on TRISIS (TRITON). He’s now an incident responder and analyst at Dragos in our threat operations center. Hear his first hand account of TRISIS just now released from S4x19.
Triton - Report From In The Plant
#S4x19
video with Julian Gutmanis who was on the ground. Good info for incident response, vendor reaction, lessons learned.
Calling all asset owners/operators in the ICS/OT community! We're excited to announce that the 2021 Dragos Industrial Security Conference (DISC), will be held as a hybrid event this year on November 5. Learn more here:
#DISC2021
#infosec
#dontmissit
Our researchers worked with Linking the Oil and Gas Industry to Improve Cybersecurity (LOGIIC) to investigate security issues related to sensors used in safety systems. A report summarizing the findings was released today, learn more here:
#infosec
Our latest blog by VP of threat intelligence
@cnoanalysis
details how to leverage the
@MITREattack
framework for
#ICS
to measure and map against threat detections in the Dragos Platform to visualize coverage and defensive gaps. Read more here:
We are excited to share our 2019
#ICS
Year in Review key findings posters, available to download! This year’s theme? Nostalgia! Check out the panel-by-panel action of our team’s vulnerability, threat, and industry observations here.
#ICSYIR19