SCADA Risks in the Post-Stuxnet World
Attacks, often with custom malware, can have very serious consequences for the safety, reliability, and productivity of the SCADA network, and are becoming more and more common. These attacks are the first line of offense in state-to-state conflict.
SCADA networks use different protocols than traditional IT networks, provide different data - preventing the use of currently available IT network security solutions. MENDEL helps protect SCADA and ICS (Industrial Control Systems) networks with the same advanced detection and full visibility offered to more traditional IT networks.
MENDEL applies machine learning anomaly detection on all SCADA protocols, identifies and displays every communication between devices within the SCADA network in an easy-to-understand graph. It monitors SCADA-specific protocols like IEC 61850 GOOSE, SV, Modbus, DNP3, MMS, and IEC 60870-5-101/104, and includes signatures of known SCADA threats, and offers the ability to detect risks to the SCADA network even without monitoring the entire communication flow.
But MENDEL goes further, by adding the ability to detect threats on any device connected to the SCADA network, so malicious actors or infected devices like maintenance equipment, appear when they connect, not after they've attacked.