Cybersecurity Under Pressure. Real Attacks, Real Lessons

Antonio González

This podcast breaks down real cybersecurity incidents to understand what actually went wrong, not in theory, but in practice. Each episode analyzes a recent attack, explains the technical mechanics in clear language, and translates them into concrete lessons for security, engineering, and business teams. Topics covered: OT security, ICS cybersecurity, industrial control systems, critical infrastructure protection, NIS2 compliance, Zero Trust architecture, operational technology resilience, railway cybersecurity, automotive security, and cyber-physical systems.

  1. 26. Juni

    The Compliance Theater. Draining Supplier R&D and Breaking Automotive Silos.

    our Tier-2 supplier just spent 80,000 euros on compliance. Their product cybersecurity did not improve by a single cent. In this episode of "Cybersecurity Under Pressure: Real Attacks, Real Lessons," we look at the compliance trap the automotive industry has built for its own supply chain. A single electronic component supplier must now navigate the overlapping demands of UNR 155, TISAX, and ISO 21434, and potentially the EU Cyber Resilience Act (CRA). The consequence? One exhausted engineering team building parallel "compliance theaters" to satisfy different auditors instead of building one secure product. We discuss the fatal flaw of managing requirements in silos and move beyond the sales pitch of PLM automation tools. Instead, we analyze the real engineering challenge: process convergence. Discover how to integrate Information Security Management Systems (ISMS) with Cybersecurity Management Systems (CSMS), using TISAX corporate controls as the baseline for ISO 21434 organizational requirements. We challenge OEMs and Tier-1s to stop outsourcing their compliance anxiety. Residual risk in the automotive supply chain isn't solved by adding more audit cycles. We explore practical strategies to optimize the audit burden and ensure supplier budgets are invested in actual product resilience, not just bureaucratic overhead. Listen now and subscribe to "Cybersecurity Under Pressure" for practical lessons on supply chain risk, process convergence, and real-world automotive cybersecurity defense.

    30 Min.
  2. 22. Juni

    The Shadow Corridor. Legacy VPNs and the Financial Blast Radius in OT

    Last month, a maintenance technician connected to a Level 1 PLC via VPN to fix a sensor. He did not know he had just opened the only door an attacker needed. In this episode of Cybersecurity Under Pressure Real Attacks Real Lessons, we look at a quiet failure in industrial architecture. The Purdue Model is not dead, but it is being bypassed from the inside. A direct VPN tunnel to OT infrastructure grants broad network access. It wraps lateral movement in implicit trust, delaying IDS correlation until the attacker already has command execution. Suddenly, the problem is not a broken sensor. It is a compromised plant floor. We discuss why classical VPN access for third party vendors is no longer just technical debt. Under NIS2 and the principles of IEC 62443, it is board level negligence with a compliance countdown attached. We analyze the transition to ZTNA architected for OT, focusing on continuous identity verification and forensic session recording to turn a vendor intervention into a strictly audited, least privilege transaction. But deploying ZTNA in legacy railway and automotive networks can become an operational trap. Without accounting for strict machinery manufacturer support contracts and industrial protocols, security teams face severe friction. It requires engineering redesign, not just a software patch. Because unmanaged remote access is no longer just an IT concern. It is a direct threat to the OPEX forecast, driving downtime costs, regulatory fines, and insurance premium hikes. Listen now and subscribe to Cybersecurity Under Pressure for practical lessons on OT cybersecurity, industrial resilience and real world network defense.

    51 Min.
  3. 19. Juni

    Missing Cybersecurity Evidence Can Delay Production

    The next production delay may not come from a missing component. It may come from missing cybersecurity evidence. In this episode of Cybersecurity Under Pressure: real attacks, real lessons, we look at a growing risk in automotive supply chains: suppliers may deliver the ECU, the software may work, and the release plan may look under control. Then a vulnerability appears, a VSOC event raises questions, or the OEM asks whether a specific component, diagnostic function, OTA path, certificate or backend dependency is affected. Suddenly, the blocking item is not hardware. It is evidence. We discuss why generic documentation is not enough during a real incident. Automotive teams need decision-grade evidence: affected-version mapping, VEX-enriched SBOMs, vulnerability impact analysis, TARA delta, V&V evidence, mitigation status, incident timelines, escalation contacts and cybersecurity case support. A raw SBOM can become a trap. Without exploitability justification, engineering teams may waste critical time chasing theoretical CVEs that are not reachable in the actual ECU architecture. The supplier must own the first exploitability assessment, while the OEM or Tier 1 still owns the final risk decision. Because supplier governance is no longer just a purchasing annex. It is a production resilience control. Listen now and subscribe to Cybersecurity Under Pressure for practical lessons on automotive cybersecurity, supply chain risk and real-world product incident response.

    39 Min.

Info

This podcast breaks down real cybersecurity incidents to understand what actually went wrong, not in theory, but in practice. Each episode analyzes a recent attack, explains the technical mechanics in clear language, and translates them into concrete lessons for security, engineering, and business teams. Topics covered: OT security, ICS cybersecurity, industrial control systems, critical infrastructure protection, NIS2 compliance, Zero Trust architecture, operational technology resilience, railway cybersecurity, automotive security, and cyber-physical systems.