Supplemental Cyber Highlights – October 26, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

ICS/OT/SCADA Vulnerabilities & Threats

• New Project Analyzes and Catalogs Vendor Support for Secure PLC Coding (Security Week)

IT Vulnerabilities, Malware & Threats

• Winter Vivern exploits zero-day vulnerability in Roundcube Webmail servers (WeLiveSecurity)
• Virtual Alarm: VMware Issues Major Security Advisory (Dark Reading)

Ransomware

• Meet Rhysida, a New Ransomware Strain That Deletes Itself (Dark Reading)
• SIM Swappers Are Working Directly with Ransomware Gangs Now (404 Media)

General Awareness

• CrowdStrike Services Offers Incident Response Executive Preparation Checklist (CrowdStrike)
• Israeli-Hamas Conflict Spells Opportunity for Online Scammers (Dark Reading)
• What is operational risk and why should you care? Assessing SEC rule readiness for OT and IoT (Help Net Security)
• The Cybersecurity Resilience Quotient: Measuring Security Effectiveness (Security Week)
• Neuberger: New global initiatives will include information sharing, ransomware payment tracking (The Record)
• Hacktivism in 2023: From Grassroots Movements to State-Sponsored Threats (Check Point)
• Flipper Zero can now spam Android, Windows users with Bluetooth alerts (Bleeping Computer)
• Most common Active Directory misconfigurations and default settings that put your organization at risk (NVISO Labs)