InfoSecBulletin Cybersecurity for mankind
The MITRE Corporation and the US Cybersecurity and Infrastructure Security Agency (CISA) released Caldera for OT, a new extension to the open source Caldera platform that emulates adversarial attacks against operational technology (OT).
Caldera for OT is the result of a collaboration between MITRE, CISA, and the Homeland Security Systems Engineering and Development Institute (HSSEDI). It is designed to help organizations identify and eliminate weak spots in their OT systems, which are a critical part of critical infrastructure, such as electricity, transportation, and water facilities.
The tool uses the MITRE ATT&CK framework as its backbone, and it can be used to simulate a wide range of adversary techniques, including those used in real-world attacks. Caldera for OT also supports Factory and Security Acceptance Testing (FAT/SAT), which is a critical process for ensuring the security of OT systems.
“Protecting our nation’s critical infrastructure is essential,” said MITRE vice president and director Yosry Barsoum. “With Caldera for OT, we are pleased to partner with CISA to help defenders of operational technology exercise and improve the defenses of these critical systems.”
Caldera for OT is now available for download on GitHub. MITRE and CISA are already working on new open source modules for the tool, to expand its capabilities to cover new attacks, environments, and protocols.
