Supplemental Cyber Highlights – January 23, 2025

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience

• From qualitative to quantifiable: Transforming cyber risk management for critical infrastructure | CyberScoop
• DNV report highlights increased OT cybersecurity investment in energy sector due to escalating threats | Industrial Cyber
• Trump administration dismantles CSRB, leaves future of cybersecurity oversight in question | Industrial Cyber

IT Vulnerability Security Updates

• Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products | The Hacker News
• 48,000+ internet-facing Fortinet firewalls still open to attack | Help Net Security
• SonicWall SMA appliances exploited in zero-day attacks (CVE-2025-23006) | Help Net Security
• MasterCard DNS Error Went Unnoticed for Years | Krebs on Security

IT Malware, Threats & Risks

• Major Cybersecurity Vendors’ Credentials Found on Dark Web | Infosecurity Magazine  
• Will 2025 See a Rise of NHI Attacks? | Dark Reading  
• Mirai botnet behind the largest DDoS attack to date | Help Net Security

Ransomware

• Ransomware Attacks Surge to Record High in December 2024 | Infosecurity Magazine
• Two ransomware groups abuse Microsoft’s Office 365 platform to gain access to target organizations | Security Affairs
• Ransomware gangs pose as IT support in Microsoft Teams phishing attacks | Bleeping Computer

Cyber Resilience, General Awareness, & AI

• Cloudflare mitigated a record-breaking 5.6 Tbps DDoS attack | Bleeping Computer
• Iran and Russia deepen cyber ties with new agreement | The Record
• Invisible Prompt Injection: A Threat to AI Security | Trendmicro