CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – March 7, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
Fulton County, the largest county in Georgia, is still recovering from its January cyber incident. LockBit, the ransomware gang that took credit for the attack, posted a timer on its criminal website demanding payment – all this despite having its criminal infrastructure disrupted by the FBI in late February.
Muscatine Power and Water (MPW) sent out breach notification letters last week informing impacted customers that their personal information may have been stolen in the cybersecurity incident on January 26. MPW stated that attackers were able to access names, social security numbers, driver’s licenses, and telephone service data (telephone number, minutes of usage, billed amount etc.) for 36,955 people.
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – March 5, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – February 29, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA released a joint Cybersecurity Advisory (CSA) today in coordination with the FBI, MS-ISAC, and multiple international partners to emphasize that cyber threat actors continue exploiting previously identified vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways. The advisory was developed with the cooperation of Volexity, Ivanti, Mandiant, and other industry partners.
Today, CISA, the FBI, and MS-ISAC released a joint Cybersecurity Advisory (CSA), #StopRansomware: Phobos Ransomware, to disseminate known tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs), which are from incident response investigations tied to Phobos ransomware activity from as recently as February, 2024.
Two recently resolved vulnerabilities in ConnectWise ScreenConnect, tracked as CVE-2024-1709 and CVE-2024-1708 (CVSS scores of 10 and 8.4, respectively) are being exploited by more and more threat actors. This greater interest among varied threat actors is broadening the threat and escalating urgency of remediation. Affected versions include ScreenConnect 23.9.7 and earlier versions.
The President’s Council of Advisors on Science and Technology (PCAST) released a report on fortifying the nation’s cyber-physical systems (attached). These systems are the integrated digital and infrastructural resources that are crucial to Americans’ daily lives, including the electrical grid, public water systems, internet and telecommunications, banking systems, air traffic control, and much more.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
