Get Full Government Meeting Transcripts, Videos, & Alerts Forever!
Open-source Malcolm urged as a low-cost way for water systems to detect OT cyber threats
Summary
Presenters at a MassDEP webinar highlighted recent ransomware and counterfeit-PLC incidents and recommended Malcolm, a free open-source network traffic analysis suite, for asset inventories, secure logging, and OT anomaly detection; hardware costs for typical systems were estimated under $5,000.
Seth Grover, a software engineer at Idaho National Laboratory and lead developer of the Malcolm network-traffic analysis suite, urged water-system operators to deploy network logging and asset inventories to detect intrusions and rogue devices. "We want this to be something that people can install in their networks... to have network logging, to have some visibility into OT traffic," Grover said during a Massachusetts Department of Environmental Protection webinar.
The recommendation followed two recent examples discussed by Christopher Van, a cyber security technical assistance provider with MassDEP's drinking water program: a Massachusetts public water system that recovered from ransomware on a SCADA server after operators clicked a phishing link, and a…
Already have an account? Log in
Subscribe to keep reading
Unlock the rest of this article — and every article on Citizen Portal.
- Unlimited articles
- AI-powered breakdowns of topics, speakers, decisions, and budgets
- Instant alerts when your location has a new meeting
- Follow topics and more locations
- 1,000 AI Insights / month, plus AI Chat
