Cybersecurity research firm ESET claims it has uncovered details of the successor of the BlackEnergy APT group, whose main toolset was last seen in December 2015 when it caused outages in Ukraine’s electric grid.
The theme for this week of National Cybersecurity Awarness Month is “Critical Infrastructure Cybersecurity,” for which the National Cyber Security Alliance (NCSA) is seeking to raise awareness of the important role individuals and organizations play in helping to protect the assets and systems we depend upon. “NCSA, [the U.S. Department of Homeland Security], and thousands of supporters are committed to reiterating the message that everyone shares a role in protecting cyberspace.
Oracle has released its Critical Patch Update for October 2018 to address 301 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The NCCIC encourages users and administrators to review the Oracle October 2018 Critical Patch Update and apply the necessary updates.
The NCCIC has released an advisory on untrusted pointer dereference, out-of-bounds read, integer overflow to buffer overflow, path traversal, out-of-bounds write, and stack-based buffer overflow vulnerabilities in LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Laquis SCADA. Smart Security Manager Versions 4.1.0.3870 and prior are affected. Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, crash the system, or write controlled content to the target system. LCDS recommends that users update to Version 4.1.0.4114.
The Federal Bureau of Investigation (FBI) has released an article on building a digital defense against phishing scams targeting electronically deposited paychecks. In these schemes, scammers use phishing emails to direct employees to fraudulent websites and collect their work credentials. Scammers then use victims’ credentials to replace legitimate direct deposit information with their own account details.
An article by WaterISAC Lead Analyst Chuck Egli published in the October 2018 edition of the Water Environment Federation’s Water Environment & Technology magazine discusses the most significant threats to water and wastewater utilities today. Foremost among these are threats that emerge from nation-states like Russia China, Iran, and North Korea, all of which U.S. counterterrorism and law enforcement officials have issued warnings about in recent years and months.
The theme for this week of National Cybersecurity Awareness Month is “Workplace Security,” and the National Cyber Security Alliance (NCSA) reminds employees in all work environments that online safety and security are a responsibility shared by all. The NCSA recommends a top-down approach to create a culture of cybersecurity in the workplace and refers to a list of steps developed by the National Institute for Standards and Technology (NIST) it says will help businesses tremendously as they formulate plans to keep themselves secure.
An article recently published in WaterWorld discusses the host of cyber risks confronting water and wastewater utilities, noting that managing them will require a culture shift. Risks have arisen from the advent of new technologies that expand attack surfaces and heighten the potential consequences of an attack and vulnerabilities introduced via supply chains. As described by the article, fortunately there is a growing awareness within the sector of these risks as well as a proliferation of tools and other resources to help water and wastewater utilities prevent and mitigate incidents.
October 11, 2018
The NCCIC has updated this advisory with additional details on the vulnerability and the risk it poses, technical details about the affected products, and mitigation measures. NCCIC/ICS-CERT.
May 31, 2018
The NCCIC has released an advisory on out-of-bounds write and stack-based buffer overflow vulnerabilities in Delta Industrial Automation TPEditor. Versions 1.90 and prior are affected. Successful exploitation of these vulnerabilities could crash the accessed device, resulting in a buffer overflow condition that may allow remote code execution. Delta Electronics recommends affected users update to the latest version of Delta Industrial Automation TPEditor, Version 1.91. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
