The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Alerts, Updates, and Bulletins:
CISA and the FBI released a joint Cybersecurity Advisory (CSA) CL0P Ransomware Gang Exploits MOVEit Vulnerability in response to the recent vulnerability exploitation attributed to the CL0P Ransomware Gang. The CSA provides indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) identified through FBI investigations as recently as May this year. Additionally, it provides immediate actions to help reduce the impact of CL0P ransomware.
The World Economic Forum posted an article discussing insights in information sharing from a recent cybersecurity conference in Copenhagen, Denmark that gathered participants from the public and private sector. The three major takeaways were the sharing of lessons learned, the adoption of the EU’s Network and Information Security Direction 2 (NIS 2.0), and the need for consolidating security solutions.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Alerts, Updates, and Bulletins:
Today, CISA, the FBI, the National Security Agency (NSA), MS-ISAC, and the Israel National Cyber Directorate (INCD) released the Guide to Securing Remote Access Software. This guide is intended to provide an overview of legitimate uses of remote access software; common exploitations and associated tactics, techniques, and procedures (TTPs); and how to detect and defend against malicious actors exploiting this software.
Verizon just released its 2023 Verizon Data Breach Investigations Report, the 16th edition of this widely anticipated report catalogs and analyzes the past year’s trends in cyber crime. The report provides deep insight exploring the most common, most dangerous, and fastest-growing attack trends wielded against organizations worldwide. One of the most important findings is that the median cost per ransomware incident more than doubled over the past two years.
The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
New evidence indicates the threat actor associated with the RomCom backdoor is not only motivated by financial gain but is increasingly targeting entities likely for geopolitical purposes. Security researchers at Trend Micro assess that the use of the RomCom backdoor in recent attacks, including on water and energy utilities, suggests the threat actor’s motives have changed since October 2022.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other security-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
