Employees and contractors can become mere victims of a cyber attack. Often their actions are unintentional, but damaging nonetheless, when credentials are shared with others or stolen and used by attackers to illegally authenticate to valuable systems. Knowing how employees and contractors access your systems and the devices they use will help detect anomalous behavior attempting to impersonate these trusted relationships.
As industrial organizations embrace the Internet of Things (IoT), they must strike the proper balance between benefit and risk. SecurityWeek posts an article highlighting strategies to reduce the vulnerabilities inherent in Industrial IoT deployments from resulting in unintended consequences threatening safety and security. Having a robust asset management program is the first step and is foundational to protecting every network environment.
The NCCIC recently published Security Tip 18-001, Securing Network Infrastructure Devices, noting that this equipment constitutes an ideal target for malicious cyber actors. Moreover, the NCCIC submits that many of these devices are easy targets for attackers because they are not maintained at the same security level as general-purpose desktops and servers. This Security Tip aims to address this issue by providing users and network administrators with steps they can take to better secure their infrastructure.
The NCCIC has released an advisory on a stack-based buffer overflow vulnerability in Delta Electronics Delta Industrial Automation COMMGR. COMMGR Version 1.08 and prior are affected. Successful exploitation of this vulnerability may allow remote code execution, cause the application to crash, or cause a denial-of-service condition in the application server.
Undesirable habits of employees - including those of tele-workers, lack of physical document security, and inappropriate use of mobile devices are common factors contributing to the insider threat problem facing all organizations.
Understanding the organizational environment and addressing blind spots is foundational in achieving cybersecurity resilience in any system, IT or OT. Many organizations struggle with vulnerability management, and even more so with vendor/supply chain risk management, often sacrificing vendor risk completely. Threat actors will look for the weakest attack surface of an organization to exploit, which often exists through the supply chain.
Cyberscoop highlights a March 2018 Ponemon Institute global study sponsored by IBM Resilient on the importance of cyber resilience for a strong security posture.
SamSam ransomware has been involved in some high profile attacks recently, including the incident that involved Atlanta city government computers and systems earlier this year. Part of what SamSam so challenging to address is that it has evolved from its different version, making it more difficult to detect or track.
More and more Australian businesses and organizations are entering into partnerships with the county’s newly formed joint cyber security centres (JCSCs). And as a result, the JCSCs now have relationships with an expanding number of critical infrastructure sectors, which includes the water and wastewater sector, the energy sector, and the commercial facilities sector, among many others. The JCSCs are designed to co-located government, business, and academic cybersecurity experts so that they can share data and advice on threats.
The Federal Trade Commission (FTC) has launched Operation Main Street, an effort with the Better Business Bureau (BBB) and law enforcement to educate small business owners on how to stop scams targeting their businesses.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
