A subcommittee hearing held yesterday on Ensuring Cybersecurity of America’s Drinking Water Systems, top water and wastewater systems sector trade officials expressed concerns to lawmakers that utilities are in urgent need of more government funding for cybersecurity training and resources.
Schneider Electric confirmed it fell victim to a ransomware attack on January 17 in its Sustainability Business division. The Cactus ransomware group has claimed responsibility. The attack resulted in theft of corporate data and disrupted some of the company’s Resource Advisor cloud platform.
Reminder: Action may be required if your utility uses affected versions of Ivanti Connect Secure and Policy Secure Gateways. Please have systems administrators address promptly, if they have not already.
Additionally, impacted utilities are strongly encouraged to conduct continuous threat hunting, regardless of the mitigations implemented and regardless of external or internal ICT results.
In Tuesday’s Security & Resilience Update, WaterISAC shared breaking news from Reuters regarding the U.S. Disruption of Chinese Threats to Critical Infrastructure, to include activity from the group tracked as Volt Typhoon. Yesterday, top U.S. officials confirmed that it disrupted a botnet run by the prolific Chinese government-aligned threat group.
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – February 1, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Attention: Action may be required. If your utility uses affected versions (9.x and 22.x) of Ivanti Connect Secure and Policy Secure Gateways, please have systems administrators address promptly.
For months, WaterISAC has been tracking and sharing various developments regarding Chinese state-affiliated actors, Volt Typhoon and the threat this group’s tactics pose to U.S. critical infrastructure, including water and wastewater infrastructure. Earlier today, Reuters published an exclusive report highlighting recent U.S. government actions to fight this pervasive threat. WaterISAC is providing this developing situation for awareness and will continue to track and report accordingly.
Today, CISA and the EPA jointly released a Water Sector Cybersecurity Toolkit to aid water and wastewater sector stakeholders in bolstering their cybersecurity preparedness. The toolkit can help water and wastewater utilities build their cybersecurity foundation and progress to implement more advanced, complex tools to strengthen their
Update to include key witnesses:
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – January 30, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
