Supplemental Cyber Highlights – June 4, 2024
Created: Tuesday, June 4, 2024 - 17:03
Categories: Cybersecurity, OT-ICS Security, Security Preparedness
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
- Need to enhance role of OT endpoint security in safeguarding industrial environments from rising cyber attacks | Industrial Cyber
- Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices | The Hacker News
- CISA outlines forward-looking National Plan for critical infrastructure security and resilience | Industrial Cyber
- Chalubo Malware to Brick 600,000 Routers | SecurityWeek
IT Vulnerabilities & Security Updates
- Cox fixed an API auth bypass exposing millions of modems to attacks | Bleeping Computer
- Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution | Center for Internet Security
- CVE-2024-4358, CVE-2024-1800: Exploit Code Available for Critical Exploit Chain in Progress Telerik Report Server | Tenable
IT Malware, Threats & Risks
- Security challenges mount as companies handle thousands of APIs | Help Net Security
- SASE Threat Report: 8 Key Findings for Enterprise Security | The Hacker News
Cyber Resilience & General Awareness
- An Argument for Coordinated Disclosure of New Exploits | Dark Reading
- Attack Behaviors | Huntress