Supplemental Cyber Highlights – May 2, 2024
Created: Thursday, May 2, 2024 - 19:07
Categories: Cybersecurity, OT-ICS Security, Security Preparedness
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
- How to fine-tune the White House’s new critical infrastructure directive | Cyberscoop
- House Committee emphasizes importance of CIRCIA implementation for cyber preparedness | Industrial Cyber
- DOE, EPA support NSM-22 focused on critical infrastructure security and resilience | Industrial Cyber
IT Vulnerabilities & Security Updates
- HPE Aruba Networking fixes four critical RCE flaws in ArubaOS | Bleeping Computer
- Tripwire Patch Priority Index for April 2024 | Tripwire
- When is One Vulnerability Scanner Not Enough? | The Hacker News
IT Malware, Threats & Risks
- Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data | SecurityWeek
- Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks | Trendmicro
Ransomware
- LOLBin to INC Ransomware | Huntress
- LockBit, Black Basta, Play Dominate Ransomware in Q1 2024 | Infosecurity Magazine
- 1 in 5 US Ransomware Attacks Triggers Lawsuit | Infosecurity Magazine
- Ransomware Rising Despite Takedowns, Says Corvus Report| Infosecurity Magazine