[Zettel Feedback] Monitoring physical variables in ICS for early attack detection
While monitoring network and software data can be used to discover anomalies and detect early signs of attacks, expanding to monitor the status of physical variables, such as temperature and sounds can indicate unusual activity. Early detection of an attack in the ICS environment could minimize the potential impact of an attack as it could be used to pivot [[20210908145033 Simplified Attack Vector OT IT]] into other parts of the network (like the enterprise network) [[20220120110715 Incident Response in ICS - Detection]].
It looks like you're new here. If you want to get involved, click one of these buttons!