Story image

Honeywell launches USB security solution for industrial control systems

18 Apr 2017

The humble USB device has been a tool of portability and convenience when it comes to transferring files, however there are also major security implications as they are shared from one computer to another.

In industrial control systems, USB devices and malware hiding within them were the second-biggest threat to systems last year, according to research by BSI publications. 

Uncontrolled USB devices, initially used by employees and contractors to patch, update and exchange data, have played parts in taking down power plants and turbine control workstations.

Industrial cybersecurity provider Honeywell Process Solutions (HPS) has recognised the need for better security against USB-borne threats and has developed a new Secure Media Exchange (SMX) solution.

Eric Knapp, HPS’ cyber security chief engineer, says hundreds or thousands of contractors could be on site every day.

“Many, if not most, of those rely on USB-removable media to get their jobs done. Plants need solutions that let people work efficiently, but also don’t compromise cyber security and, with it, industrial safety,” he says.

The company states that many plants outright ban USB devices or use traditional malware scanning solutions. However, those methods don’t protect against the latest threats and don’t address targeted or zero-day threats.

Honeywell developed its SMX application in conjunction with cybersecurity experts and User Group customers, the company states. 

“For most plants, the proliferation of removable media and USB devices is unavoidable, but the security risks they bring don’t have to be. We know our customers have limited resources to maintain another system, so Honeywell manages SMX for them. SMX never connects to our customers’ process control networks. From a system administration perspective, it’s like it’s not even there,” Knapp explains.

Users plug in their USB device through an SMX Intelligence Gateway. The gateway then analyses the device for threats. In addition, customers can also use SMX client software to control when and where USB devices are mounted. 

Honeywell also partners with Microsoft, Intel Security and Palo Alto Networks to continue developing industrial threat detection techniques. 

ESET researchers break down latest arsenal of the infamous Sednit group
At the end of August 2018, the Sednit group launched a spear-phishing email campaign, in which it distributed shortened URLs that delivered first-stage Zebrocy components.
Container survey shows adoption accelerating while security concerns remain top of mind
The report features insights from over 500 IT professionals.
Google 'will do better' after G Suite passwords exposed since 2005
Fourteen years is a long time for sensitive information like usernames and passwords to be sitting ducks, unencrypted and at risk of theft and corruption.
Who's watching you? 
With privacy an increasing concern amongst the public, users should be more aware than ever of what personal data companies hold.
Fake apps on Google Play scamming users out of cryptocurrency
Fake cryptocurrency apps on Google Play have been discovered to be phishing and scamming users out of cryptocurrency, according to a new report from ESET.
Managing data to comply with privacy regulations - Micro Focus
It’s crucial for organisations to be able to access, understand, and accurately classify the data they have so they know how to treat it.
Hackbusters! Reviewing 90 days of cybersecurity incident response cases
While there are occasionally very advanced new threats, these are massively outnumbered by common-or-garden email fraud, ransomware attacks and well-worn old exploits.
SEGA turns to Palo Alto Networks for cybersecurity protection
When one of the world’s largest video game pioneers wanted to strengthen its IT defences against cyber threats, it started with firewalls and real-time threat intelligence from Palo Alto Networks.