Based on research using open source intelligence resources, cybersecurity firm Trend Micro explores vulnerabilities for two of the most critical infrastructure lifelines. The report, Exposed and Vulnerable Critical Infrastructure: Water and Energy Industries (posted below), demonstrates the ease of discovering and exploiting cyber assets in the water and energy sectors. Primarily using Shodan and other basic open source intelligence (OSINT) techniques, Trend Micro discovered exposed and vulnerable HMIs. They further examined real-world and supply chain implications and the cascading and far-reaching effects, including how smaller entities are frequently test-beds for attacks on larger organizations. The report goes into detail on the methods used for discovering exposed HMIs, and would be useful for every organization - regardless of size and cyber maturity - to apply those same methods for discovering exposed devices in their own environment before the bad guys do. Trend Micro.