Join Opto 22 and Cirrus Link Solutions for an important webinar addressing cybersecurity and data integrity with MQTT.

The topic of cybersecurity has been in recent news headlines and is always a concern for automation professionals designing or upgrading their industrial control systems. Opto 22 technology partner, Cirrus Link Solutions, has invited us to participate in a new webinar addressing these concerns. Make plans to join us on June 30th for some revealing product demos and discussions.

Best practices for cybersecurity and more from the groov EPIC v3.2 update to help you get sign-off on critical security upgrades.

Solarwinds, Oldsmar, Colonial, JBS—with all the cybersecurity news filling our inboxes, news feeds, and social channels, your customers may finally be ready to talk about a more rigorous security strategy.

So I figured this was a relevant time to share our recently updated tech note, “groov EPIC Cybersecurity Designs and Best Practices.” It details the mindset and specific actions that can change your automation from a security vulnerability into a security asset.

Building industrial MQTT networks at scale with edge computing.

We promised that 2020 would be a big year for MQTT at Opto 22, and with the launch of groov RIO, we've renewed our commitment to this transformative communication standard. But, in spite of its popularity—already used in everything from mobile chat to smart energy management—and the advantages it provides for IIoT, there are significant challenges to bringing MQTT into an industrial environment. In this new white paper, we show you how (and why) to make it happen.

The latest firmware release for all SNAP PAC controllers and brains addresses important security fixes.

For all you SNAP PAC users, an important update is available now! SNAP PAC firmware 10.3b is ready for download.

This latest maintenance release has some noteworthy updates you'll want to review. You can check out the README for a complete list of bug fixes and exact details. It lists revision changes made to the firmware used in SNAP PAC S-series, R-series, and SoftPAC controllers; SNAP PAC EB-series and SB-series brains; and G4EB2 and G4D32EB2 brains.

The recent announcement of security vulnerabilities discovered in the Wind River® VxWorks® IPnet TCP/IP stack has prompted questions from Opto 22 customers about what impact this discovery may have on TCP/IP-based products developed and manufactured by Opto 22.

Opto 22 would like to reassure our customers that, after careful and thorough review, we can state that none of our hardware or software products contain the VxWorks IPnet TCP/IP stack or variants of that software and are, therefore, not directly exposed to any attacks that might target these vulnerabilities. This statement applies to the recent Opto 22 product family groov EPIC® (edge programmable industrial controller), the groov® Edge Appliance (groov Box), the SNAP PAC® System, and SNAP Ethernet I/O® products.

These security vulnerabilities, dubbed URGENT/11 by Armis, an enterprise IoT security firm that made the discoveries, have far-reaching implications and affect an extremely large array of industrial, medical, and enterprise environments. These include mission-critical systems such as SCADA, industrial controllers, PLCs, PACs, and more. Other systems outside traditional industrial devices like patient monitors and MRI machines, as well as firewalls, routers, modems, VOIP phones, and printers are also affected.

An Automation World podcast poses the question, "Is open-source software a good choice for SCADA?"

A new podcast series, Automation World Gets Your Questions Answered, addresses questions submitted exclusively by its readers and subscribers. Opto 22's Benson Hougland and Terry Orchard recently sat down with Automation World's Editor-in-Chief, David Greenfield, to provide some insight on this open source and SCADA discussion.

Go on, admit it. At some point in your life you've written down a password on a piece of paper in clear text. Anybody walking by can simply glance at your note, and they'll know what your password is.

No, you have never done that? Excellent. 

But if you've ever used your web browser to log into a website over the web, and entered sensitive information like your password without encryption, you've effectively transmitted that information through the internet for all to see, almost like writing it on paper and showing it around.

Whoa.

In this blog post, let’s take a closer look at user accounts on the groov EPIC system, and how you can improve your system security by giving users and services fine-grained access to applications running on EPIC. In other words, make sure each person or service has only the access they really need and nothing more.

But before we get deep into user accounts, let’s first discuss user account credentials. Take a moment and ask yourself the following questions:

• Do you use the same password for multiple accounts?
• Do you use a mix of punctuation and capital letters in your passwords?
• Do you use long phrases as your passwords?

The story goes that a valve manufacturer wanted to have their networked smart valves certified for use in a nuclear reactor plant. The smart valve could report all sorts of critical data points to a database system and also be controlled by that SCADA system in the plant. But to get it certified for use, the smart valve had to undergo a rigorous security audit by the information technology (IT) department at the plant.

Ever notice how emergency exits in a building open outward? Then, to keep the building secure, they are usually locked from the outside. You can get out easily enough, but you can’t get in that way.

However, on a building’s main front entrance, the door often swings in so you can enter. Typically, there is a security guard or perhaps a receptionist there to check your ID and keep an eye on the comings and goings.