The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
In a notification published today, CISA has collaborated with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) to release an advisory, People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action (AA24-190A) outlining a PRC state-sponsored cyber group’s activity.
WaterISAC has been made aware of a second phishing attempt against Maine water operators. This time the campaign also targeted well drillers. The campaign was reported to the Maine CDC Drinking Water Program on June 24, 2024, and was observed using a similar template as the prior attempt reported in January 2024 – Threat Advisory – Phishing Campaign Impersonates State CDC Drinking Water Program.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
A recent post by Google Cloud’s Mandiant discusses the how the global revival of hacktivism requires increased vigilance from defenders. This increased vigilance includes defenders of the water and wastewater systems sector, as it has seen multiple attacks from the modern hacktivist classification of threat actors in recent months.
Tech support scams are nothing new. According to the FBI Internet Crime Complaint Center’s 2023 Internet Crime Report, tech and customer support impersonation scams were the third costliest type of cyber crime at 37,560 complaints totaling $924,512,658 in losses which resulted in a 15% increase over 2022.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories
A recent post by Cisco Talos Intelligence considers the many implications and follow-on attacks originating from leaked and/or stolen credentials for the Snowflake cloud data platform and reminds us that this is indicative of a much larger issue. Talos points out that the Snowflake incident isn’t an outlier but is just another incident in the long line of identity access and credential theft incidents.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories
CISA Releases Seven Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
