We are excited to announce the release of MetaDefender OT Access 1.8, bringing enhanced security, real-time monitoring, and streamlined file transfer capabilities to critical OT & Cyber-Physical Systems (CPS) environments. This release introduces two major integrations that further solidify our commitment to secure remote access and industrial cybersecurity:
- MetaDefender Managed File Transfer™ Integration: Enables secure, policy-controlled file transfers from external users to OT & CPS environments, leveraging MetaDefender Core’s advanced threat detection to prevent malware infiltration.
- Splunk Integration: Allows for real-time log forwarding, centralized security event monitoring, and improved forensic investigation through automated syslog forwarding to a Splunk instance.
These enhancements strengthen OT & CPS cybersecurity by providing organizations with greater visibility, tighter access control, and improved compliance measures while ensuring seamless integration into existing security operations.
MetaDefender Managed File Transfer Integration: Secure File Exchange for OT Networks
MetaDefender OT Access 1.8 now includes MetaDefender Managed File Transfer integration, enabling secure, policy-enforced file uploads to OT environments. This feature is a critical step toward preventing malware infiltration through remote file transfers.
Key Benefits
- Secure Remote File Transfers: Users can upload configuration files and software updates to OT assets while ensuring they are malware-free.
- Advanced Threat Prevention: MetaDefender Core automatically scans files, preventing malicious content from entering OT environments.
How It Works
- Admins configure MFT parameters (IP, port, etc.) from OT Access WebUI.
- Remote users securely upload files via WebUI or a direct browser connection.
- MetaDefender Core scans all uploaded files:
- Clean files → Delivered to the target OT system.
- Malicious files → Rejected or quarantined, with alerts sent to the user.
Use Case: Secure Configuration File Transfer
Scenario: A third-party contractor needs to upload a configuration update to an OT system.
- The contractor logs into MetaDefender OT Access and navigates to the MetaDefender Managed File Transfer’s Secure File Transfer menu.
- The contractor uploads the configuration file, which is automatically scanned by MetaDefender Core.
- If the file is clean, it is transferred securely.
- If the file is malicious, the upload is blocked, preventing a potential security incident.
Splunk Integration: Real-Time Visibility and Security Monitoring
Many organizations rely on Splunk for log management, security event monitoring, and forensic investigations. With MetaDefender OT Access 1.8, you can now centrally monitor and analyze all remote access events within your OT networks.
Key Benefits
Real-Time Visibility
Instantly gain insights into authentication events, asset access, configuration changes, and system anomalies.
Improved Forensic Analysis
Correlate OT access logs with broader IT security events to quickly analyze security incidents, identify vulnerabilities, and strengthen defenses.
Stronger Compliance
Automatically log all critical user actions within the OT environment.
How It Works
- Easy Configuration: Admins configure Splunk forwarding directly in the MetaDefender OT Access WebUI.
- Encrypted Log Transmission: Logs are securely sent to Splunk via TLS encryption, ensuring data integrity.
- Comprehensive Event Logging: Key security events sent to Splunk include:
- User authentication (WebUI & Client)
- Remote access to OT assets (e.g., PLC read/write operations)
- Configuration changes
- Disconnections and session terminations
- System errors and anomalies
- Metrics and system status
Use Case: Splunk in Action
Scenario: An energy plant relies on MetaDefender OT Access to provide secure remote access to critical OT assets like PLCs. To enhance incident response and risk mitigation, they integrate Splunk with OT Access.
- A remote operator logs into OT Access → This event is logged and forwarded to Splunk.
- The operator connects to a PLC and makes critical changes → All activities are logged and monitored in Splunk.
- If unauthorized activity or an anomaly occurs, Splunk can trigger alerts for immediate investigation and response.
Strengthening OT Security with MetaDefender OT Access 1.8
With MetaDefender OT Access 1.8, organizations can:
- Gain real-time insights into remote access events with Splunk integration.
- Ensure secure, malware-free file transfers with MetaDefender Managed File Transfer.
- Improve compliance and incident response with robust logging and threat prevention mechanisms.
This release marks a significant step forward in securing remote access to OT networks, helping organizations reduce cyber risks and maintain operational resilience.
Ready to upgrade? Contact us today to learn more about MetaDefender OT Access 1.8.
