Researchers at Unit 42’s Threat Research Center have uncovered new samples and indicators of compromise (IoCs) of FrostyGoop – the 9th reported industrial control system (ICS) malware that became publicly known in July this year. See WaterISAC’s previous analysis of FrostyGoop.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
November 19, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
Last week, DHS released a framework that outlines how to securely develop and deploy artificial intelligence (AI) in critical infrastructure titled “Roles and Responsibilities Framework for Artificial Intelligence in Critical Infrastructure.” The recommendations apply to all entities at each layer of the AI supply chain, including cloud and compute providers, AI developers, and critical infrastructure owners and operators.
The EPA Office of Inspector General (OIG) has released a report titled “Management Implication Report: Cybersecurity Concerns Related to Drinking Water Systems.” A passive assessment of cybersecurity vulnerabilities was conducted on drinking water systems that serve over 50,000 people or more. This included 1,062 drinking water systems across the U.S. that serve more than 193 million people.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience & OT Vulnerability Management
Researchers at the SecurityScorecard STRIKE Team have uncovered a resurgence of the Chinese-affiliated threat group known as Volt Typhoon, indicating it has rebuilt its botnet which was disrupted by the FBI back in January.
The House Committee on Homeland Security released a “Cyber Threat Snapshot” examining the growing threats posed by malign nation-states and criminal networks to U.S. critical infrastructure. The snapshot particularly focuses on the threats posed by the Chinese-affiliated threat groups Volt Typhoon and Salt Typhoon, as well as the Iranian Islamic Revolutionary Guard Corps, both of which have been known to target the water sector.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
