Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Cross-Sector Cybersecurity Performance Goals (CPGs), which consist of voluntary, fundamental cybersecurity practices for critical infrastructure owners and operators to meaningfully reduce the likelihood of known risks and adversary techniques.
In August, a ransomware group claimed to have compromised a U.K. water utility’s industrial control systems (ICS). Although the attack did not impact the utility’s ability to provide safe drinking water, it nevertheless underscores the risk of threat actors attempting to gain access to ICS environments. Consequently, Microsoft recently published guidance on securing IoT devices used by critical infrastructure organizations.
Ransomware groups are continuing to target the industrial sector at an increasing rate and new ransomware gangs are emerging, threatening to push the rate of attacks up even higher, according to Drago’s most recent third quarter Industrial Ransomware Analysis report.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Cyber attacks continue to increase and impact all organizations. As such, a recent study by IBM Security highlighted that 67 percent of incident responders are experiencing greater stress or anxiety due to the pressures of responding to a cyber incident. Therefore, as cyber incident response continues to become more challenging and cumbersome, it’s important for organizations to provide sufficient operational and psychological support to help reduce stress for responders.
Ursnif malware, one of the most financially destructive banking malware in history, has been retooled into a backdoor trojan that could be used to steal data or execute ransomware attacks. This update has been characterized as a “significantly dangerous variant … that should be watched closely,” according to security researchers at Mandiant.
Last week, the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Department of Health and Human Services (HHS) published a joint Cybersecurity Advisory (CSA) to provide information on the “Daixin Team,” a cybercrime group actively targeting U.S. businesses, predominantly in the Healthcare and Public Health (HPH) Sector, with ransomware and data extortion operations.
by Jennifer Lyn Walker
Given that some of the most notorious breaches and incidents started with a phish – and will continue to do so – it is imperative that our human firewalls are able to recognize and report phishing attempts when our hardware firewalls and other security controls fail to block them. Likewise, with each data breach more and more information is added to the cybercrime coffer for miscreants to use to launch even more phishing campaigns against individuals and the organizations we work for.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Alerts, Updates, and Bulletins:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
