Nozomi Networks Labs
Headquartered in Mendrisio, Switzerland, with honeypots around the globe, the Nozomi Networks Labs team comprises threat hunters and security analysts who are dedicated to reducing cyber risk for industrial and critical infrastructure organizations. We responsibly disclose vulnerabilities and share our research findings the global OT security community.
What We Do
Vulnerability Advisories
Nozomi Networks Labs is the first specialized OT and IoT cybersecurity research lab to be named an authorized CVE Numbering Authority. Since 2020 we have worked with authorities to responsibly disclose hundreds of vulnerabilities in critical OT/ICS devices.
Threat Research
Our reports assess the OT/IoT threat landscape, cull insights from anonymized telemetry, and analyze malware samples, insecure protocols and other threats to industrial and critical infrastructure environments.
Threat Intelligence
Our curated threat and vulnerability insights are continuously fed into the Nozomi Networks platform to ensure our sensors can detect existing and emerging threats and vulnerabilities that threaten customers environments.
Vulnerability Advisories
Our Mendrisio Lab: Nozomi Networks Global R&D Headquarters
Marty the OT Guy shows you around the Mendrisio R&D headquarters, home to Nozomi Networks Labs researchers. Explore Nozomiville, a cityscape that our security researchers use to demonstrate attack scenarios across common technologies in use in cities across the world, including power distribution, smart metering, traffic light control, Wi-Fi and more.
Latest Labs Blogs
Breaking the Encryption: Analyzing the AutomationDirect CLICK Plus PLC Protocol
Lights Out: How One Tiny Message Can Crash Your Shelly Pro 4PM and Lock You Out of Your Smart Home
Hacking the Engineer’s Workstation: Compromising AutomationDirect Productivity Suite to Breach the OT Perimeter
Partnerships and Threat Intelligence Communities
Active member of the Cyber Threat Alliance, contributing to real-time threat intelligence sharing and strengthening collective cybersecurity defenses.
Leveraging Mandiant's threat intelligence to enrich our data, enhancing visibility and strengthening protection across our products for an undisputed defense.
Founders of the Elite Cyber Defenders program, collaborating with industry leaders like Mandiant and IBM X-Force to exchange real-time threat intelligence and field-generated telemetry, enhancing cybersecurity visibility and defense.
Partnering with CISA through JCDC and AIS to access and leverage real-time threat intelligence, enhancing proactive defense and resilience against cyber threats.
Partnering with MTS-ISAC to consume and integrate its intelligence, enhancing our threat detection capabilities and providing stronger security for connected operational environments.
Founding partner of ETHOS, driving real-time threat intelligence sharing to enhance early detection and strengthen cybersecurity across critical industries.
