A better and safer world

Energy Sector OT Cybersecurity

The old energy cybersecurity perimeter is gone. With millions of distributed energy resources — solar inverters, smart meters, EV chargers — now connected across open protocols, adversaries are exploiting exposed PLCs, abusing remote access credentials, and manipulating operator views at scale. This article examines the 2026 OT threat landscape and what energy operators must do to architect security into grid-edge infrastructure before the next incident.

Dependable AI: Critical Software Contributions Accepted at SAIV 2026 and FLoC 2026

Critical Software announces two research papers accepted at SAIV 2026 and OVERLAY/FLoC 2026, developed within the SONNX working group. The work applies formal methods to eliminate ambiguity in ML model specifications, enable machine-checked verification, and support certification in safety-critical industries such as aerospace, defense, and transportation.<br>

IEC 62304 Edition 2: The Biggest Change in 20 Years Is Coming

IEC 62304 Edition 2 is no longer a future concern. With a major scope expansion to health software, AI lifecycle requirements, and cybersecurity in design control, the window to prepare is shorter than most teams realise.

5 Reasons SBOMs Are Now a Core Engineering Requirement

From federal mandates to cybersecurity resilience, Software Bills of Materials are no longer a compliance afterthought. Here are five reasons why SBOMs have become a foundational engineering practice — and what your team needs to know to stay ahead.

NIS2 Compliance for Energy Teams

NIS2 is reshaping cybersecurity in the energy sector by shifting responsibility from reactive compliance to secure-by-design engineering. It places emphasis on operational resilience, supply chain oversight, strict incident reporting timelines, and executive accountability, requiring engineering teams to integrate security into system architecture from the start.

Industry Voices: The CRA Deadline Is Closer Than You Think and Your SBOM Alone Won't Save You

The EU Cyber Resilience Act is redefining software supply chain security by turning SBOMs from static compliance documents into continuous governance requirements. In this interview, RunSafe Security CTO Shane Fry explains why organizations must adopt build-time provenance, continuous vulnerability monitoring, and lifecycle SBOM management to meet CRA obligations and reduce cybersecurity risk.

Are You Ready for the Digital Euro?

The ECB’s digital euro pilot is underway, but the real challenge lies beyond the selected institutions. Thousands of banks and PSPs will need to integrate, and those treating it as a future compliance task risk falling behind. This article explores why integration is a structural engineering problem—and how to prepare before the 2029 rollout.

The Biggest Challenge in Grid Modernization Isn’t Technology

At IEEE PES T&D 2026, the energy industry made one thing clear: the biggest challenge in grid modernization is no longer technology itself, but building interoperable, AI-assisted, and cyber-resilient systems capable of operating reliably at scale in an increasingly decentralized and continuously connected grid.