(www.csoonline.com)

433 points zdw | 3 comments | 21 Oct 25 15:51 UTC | HN request time: 0.6s | source

1. bhewes ◴[21 Oct 25 18:28 UTC] No.45659649[source]▶

As a company that supports OT systems we hate seeing level 5 in the Purdue model with direct write access to level 1 and 0.

replies(1): >>45660013 #

2. cj ◴[21 Oct 25 18:54 UTC] No.45660013[source]▶

>>45659649 (TP) #

Link describing the acronyms in the above comment:

https://www.paloaltonetworks.com/cyberpedia/what-is-the-purd...

replies(1): >>45660079 #

3. bhewes ◴[21 Oct 25 19:00 UTC] No.45660079[source]▶

>>45660013 #

Thanks CJ, I live with that chart, but forget maybe most don't. And to add 4 to level 2-0 can also be an attack vector, but seeing straight 5 to 1-0 happens more then people want to admit even with the "firewalls"

↑

Foreign hackers breached a US nuclear weapons plant via SharePoint flaws