Eric Byres

Eric is widely recognized as one of the world’s leading experts in the field of OT, IT and IoT software supply chain security. He is the inventor of the Tofino Security technology – the most widely deployed OT-specific firewall in the world. When not setting the product vision, or speaking at a conference, Eric can be found cranking away on his gravel bike.
Eric Byres
Podcast: Where Do Your Bits Really Come From?
3 min read
ICS/IoT Upgrade Management 3rd Party Components Supply Chain Management
Podcast: Where Do Your Bits Really Come From?
By Eric Byres on September 26, 2019

Earlier this year I attended the Public Safety Canada Industrial Control System Security symposium in Charlottetown, PEI (FYI the PSC ICS events are outstanding - worth attending, even if...

Continue Reading
Will the DoD’s CMMC Encourage Bad Password Habits?
4 min read
password strength Uncategorized DoD CMMC
Will the DoD’s CMMC Encourage Bad Password Habits?
By Eric Byres on September 19, 2019

Last Wednesday (September 11), the U.S. Department of Defense released a draft of its Cybersecurity Maturity Model Certification (CMMC) for public comment. The idea is for the DoD to...

Continue Reading
When the Security Researchers Come Knocking, Don’t Shoot the Messenger
3 min read
medical hacking malware vulnerability disclosure Vulnerability Tracking
When the Security Researchers Come Knocking, Don’t Shoot the Messenger
By Eric Byres on November 8, 2018

Our own Jonathan Butts and Billy Rios were interviewed this month on the CBS Morning News about their research showing that medical devices like pacemakers and insulin pumps can be hacked...

Continue Reading
Who Infected Schneider Electrics’ Thumbdrive?
3 min read
chain of trust ICS USB 3rd Party Components malware industrial control system Supply Chain Management
Who Infected Schneider Electrics’ Thumbdrive?
By Eric Byres on September 12, 2018

On 24 August 2018 Schneider Electric issued a security notification alerting users that the Communications and Battery Monitoring devices for their Conext Solar Energy Monitoring Systems...

Continue Reading
Building (or Losing) Trust in our Software Supply Chain
3 min read
Dragonfly chain of trust ICS malware pharmaceutical Havex industrial control system Trojan energy Supply Chain Management
Building (or Losing) Trust in our Software Supply Chain
By Eric Byres on May 10, 2018

Back in 2014, when I was managing Tofino Security, I became very interested in the Dragonfly attacks against industrial control systems (ICS). I was particularly fascinated with the ways...

Continue Reading
Loading more posts
No more posts to load
1 2 3
    Stay up to date

    Sidebar

    Stay up to date

    Stay up to date