Summary: On Tuesday, CISA released a new guide titled “Microsegmentation in Zero Trust, Part One: Introduction and Planning.” The guide is part of an ongoing effort to support Federal Civilian Executive Branch (FCEB) agencies implementing zero trust architectures (ZTAs). CISA plans to release a subsequent technical guide to offer detailed implementation scenarios and technical considerations for implementation teams.
Summary: On Tuesday, CISA, the FBI, and several other federal and international partners released an updated joint Cybersecurity Advisory (CSA) on Scattered Spider—a cyber threat group targeting commercial facilities sectors and subsectors. The update to this advisory provides updated tactics, techniques, and procedures (TTPs) obtained through FBI investigations conducted through June 2025.
Summary: Yesterday, CISA released an Eviction Strategies Tool, a no-cost resource designed to support cyber defenders in their effort to respond to cyber incidents.
The Eviction Strategies Tool is comprised of:
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience
ICS Advisories:
On July 31, 2025, CISA Released Two Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
Summary: WaterISAC and its Champion ThreatSTOP hosted a dedicated webinar on strengthening cyber resilience in the water sector on Wednesday, July 23. In the session, Dr.
Summary: Yesterday, the FBI released a Public Service Announcement (PSA) providing an update to previously shared guidance regarding the Democratic People’s Republic of Korea (North Korea) IT worker threat to U.S. organizations. The PSA shares how North Korea is evading U.S. and U.N. sanctions by targeting private companies to illicitly generate substantial revenue for the regime.
Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience
ICS Advisories:
On July 24, 2025, CISA Released Six Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
