Cybersecurity

CISA has published an advisory on an improper authorization vulnerability in Johnson Controls Sensormatic Electronics American Dynamics Victor Web Client. All versions up to and including v5.4.1 are affected. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to delete arbitrary files on the system or render the system unusable through a denial-of-service attack. Johnson Controls recommends users upgrade all versions of victor Web Client to v5.6. CISA also recommends a series of measures to mitigate this vulnerability.

Welcome back to our homage to National Cybersecurity Awareness Month (NCSAM) with the WaterISAC ‘15 Cybersecurity Fundamentals Awareness Month’ (15CFAM) where we walk through WaterISAC’s 15 Cybersecurity Fundamentals for Water and Wastewater Utilities. Today we are touching on risk assessments.

The Australian Cyber Security Centre (ACSC) has released a special report on ransomware, noting it has observed an increase in the number of these incidents affecting Australian organizations and individuals. Some of the most significant takeaways from the report include that most ransomware incidents occurred after other malicious activity has been conducted against an organization (e.g. phishing campaigns) and that all sectors and individuals with information of value are potential targets for cyber criminals seeking opportunities for financial gain.

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has published a new Malware Analysis Report (MAR) on SLOTHFULMEDIA, a malware variant used by a sophisticated cyber actor. In addition to providing a description of the malware, the MAR contains suggested response actions and recommended mitigation techniques.