Vulnerability Analyst II & Researcher @DragosInc
Joined September 2019
- Tweets 32
- Following 272
- Followers 35
- Likes 574
Photos and videos
I’ll be giving a talk on October 30th for those around in San Diego!
10 Sep 2024
Catch @nickcno at the Planet Cyber Sec CISO-CIO Forum as he presents the "Dragos 2023 Infrastructure and Global Cybersecurity Year in Review"!
This talk offers a comprehensive overview of the most significant cyber trends, threats, and lessons learned from the past year. Dive into operational data from professional services engagements, insights on Dragos Threat Group analysis, and trends in OT vulnerability data and assessments.
Enhance your cybersecurity strategy with valuable insights from industry experts! #CyberSecInsights
planetcybersec.com/103024-co…
#PlanetCyberSec #CyberSecurity #infosec #AI #cyberwarfare #CyberAttack #cyberdefense #CISO #CIO #CISOForum
2
3
335
Another YIR in the books!
22 Apr 2024
ICYMI: Last week, Dragos Vulnerability Analysts Logan Carpenter and Nick Cano gave us a data-driven look at vulnerabilities in operational technology environments and recommended which to prioritize. Watch On-Demand → hubs.la/Q02tDmM00 #2023yearinreview #DragosIntel
2
171
Nick Cano retweeted
14 Jun 2023
The team and I looked at COSMICENERGY and I’m excited to finally share the results publicly. I hope you read the report, but I wanted to add some informal takeaways from the analysis.
(1/9) #ICS #malware
hub.dragos.com/intel-brief-d…
1
11
33
11,273
Nick Cano retweeted
11 May 2023
Read our updated analysis of MOUSEHOLE capabilities, a component of the ICS/OT attack framework #PIPEDREAM, and the common OPC UA protocol it targets. hubs.la/Q01PvJvp0 #OTmalware #DragosIntel #ICSsecurity
1
7
12
2,364
It’s almost time for our 2022 YIR Vulnerability Briefing!
6 Apr 2023
Join Dragos vulnerability analysts on April 18 for valuable insights on which ICS/OT advisories and vulnerabilities should be prioritized to better secure your industrial environment. Register now → hubs.la/Q01KqKk50 #ICSsecurity #OTsecurity #DragosIntel #yearinreview
218
Nick Cano retweeted
14 Mar 2023
Incredible to see that Dragos tracks more vulnerabilities than any other OT Cyber vendor. I know who I would choose to partner with! #OTcybersecurity #vulnerabilitymanagement
14 Mar 2023
"Dragos has reported the highest number of ICS vulnerabilities, which is explained by the fact that the company is tracking more sources than any other vendor." With Dragos's @ReverseICS. #industrialsecurity #otsecurity #icssecurity #cybersecurity. hubs.la/Q01GMrjT0
4
4
669
Nick Cano retweeted
14 Feb 2023
Now Available - The Dragos 2022 ICS/OT #Cybersecurity Year in Review! Read the highlights in our latest blog - we discuss the latest threat intelligence on adversaries targeting ICS/OT and offer proactive recommendations to stay ahead of potential threats: hubs.la/Q01CdGHH0
4
8
1,798
Nick Cano retweeted
Reid Wightman (@ReverseICS) explaining various ways logic gets deployed into industrial controllers and how 3rd party tooling like #CodeSyS can be exploited #S4x23
1
7
11
1,613
Nick Cano retweeted
6 Nov 2022
DISC2022 is over. Almost 5 years in and I’m still enjoying working with this team. Real proud of how far we’ve come.
But, my social cup is empty, so time for self-care.
2
3
22
Nick Cano retweeted
20 Sep 2022
Proud to announce that @DragosInc is now a CVE Numbering Authority (CNA) advancing the ICS/OT vulnerability discussion with a focus on what actually matters versus just what’s vulnerable dragos.com/resource/the-cve-…
2
15
127
Nick Cano retweeted
29 Aug 2022
Join us November 5 at the Dragos Industrial Security Conference (DISC) in Hanover, MD. #DISC2022 is an exclusive event for industrial asset owners/operators to hear the latest findings of the Dragos threat intel & operations teams. Register your interest: hubs.la/Q01kMNM80
11
18
Nick Cano retweeted
15 Jul 2022
Dragos’s @secureloon provides an analysis of a password “cracking” software that exploited an unknown #vulnerability in targeted industrial devices. #DragosIntel reported the vulnerability to the vendor, who has since released a patch to fix the issue: buff.ly/3PuADU2
11
14
Nick Cano retweeted
19 Apr 2022
Join the @DragosInc team involved in analyzing PIPEDREAM on April 26th and 27th (same talk two sessions to be friendlier for time zones) for an in depth look and analysis at the newest ICS malware hub.dragos.com/webinar/piped…
1
10
22
Nick Cano retweeted
13 Apr 2022
It’s been a busy last few weeks!
Check out our analysis on PIPEDREAM - the 7th malware family to target industrial control systems.
It was a fun (at times crazy) project to work on!
dragos.com/blog/industry-new…
1
5
18
Nick Cano retweeted
13 Apr 2022
Today the US Government announced a new ICS malware that has been designed to disrupt industrial operations. CISA/FBI/NSA put out a great advisory; also I appreciate the callout/thanks to @DragosInc in the advisory - we call the malware PIPEDREAM cisa.gov/uscert/ncas/alerts/…
12
349
863
Nick Cano retweeted
27 Mar 2022
Basic Scanning Threat (BST) | littlebobbycomic.com/project…
6
45
189