Supplemental Cyber Highlights – September 21, 2023
Created: Thursday, September 21, 2023 - 18:37
Categories: Cybersecurity
The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
ICS/OT/SCADA Vulnerabilities & other Critical Infrastructure Resilience
- Omron Patches PLC, Engineering Software Flaws Discovered During ICS Malware Analysis (Security Week)
- Albert Network Monitoring: Guarding State, Local Governments (Center of Internet Security)
- Rising OT/ICS cybersecurity incidents reveal alarming trend (Help Net Security)
- Water talks in the Senate (ICT News)
IT Vulnerabilities
- Trend Micro fixes endpoint protection zero-day used in attacks (Bleeping Computer)
- Experts found critical flaws in Nagios XI network monitoring software (Security Affairs)
- CISA Says Owl Labs Vulnerabilities Requiring Close Physical Range Exploited in Attacks (Security Week)
IT Malware & Threats
- Fake WinRAR proof-of-concept exploit drops VenomRAT malware (Bleeping Computer)
- P2Pinfect botnet targets Redis and SSH services (SC Magazine)
- Will Generative AI Kill the Nigerian Prince Scam? (Dark Reading) – Well, the grammar is certainly much better. The post discusses if AI will kill it or make it better.
Breaches/Incidents
- Cyberattack on Kansas town affects email, phone, payment systems (The Record)
- Canada blames border checkpoint outages on cyberattack (The Record)
- Pro-Russia hacker group NoName launched a DDoS attack on Canadian airports causing severe disruptions (Security Affairs)
- T-Mobile app glitch let users see other people’s account info (Bleeping Computer)
Ransomware Awareness
- Who’s Behind the 8Base Ransomware Website? (Krebs on Security)
Cyber Resilience
- From one realm to another: Ensuring data protection in a cloud migration (AT&T Cybersecurity)
Insider Threats (September is Insider Threat Awareness Month)
- #NITAM: Average Annual Cost of Insider Incidents Reaches $16.2m Per Organization (Infosecurity Magazine)
Technical Posts (for security analysts, sysadmins, and other nerds)
- What’s Normal? DNS TTL Values (SANS Internet Storm Center)