Cybersecurity

(TLP:CLEAR) Recorded Future’s 2024 Threat Analysis and 2025 Predictions

Summary: In 2024, two key trends defined the cybersecurity landscape: the resilience of cybercriminal networks despite law enforcement actions and the growing complexity of enterprise attack surfaces. In addition, state-sponsored threat actors, primarily linked to China and Russia, intensified their focus on critical infrastructure and leveraged generative AI to conduct influence operations to advance their geopolitical objectives. Recorded Future’s just-released threat report explores these trends and more.

Read more about (TLP:CLEAR) Recorded Future’s 2024 Threat Analysis and 2025 Predictions

(TLP:CLEAR) Forescout’s 2024 Global Threat Roundup

Summary: Forescout Technologies recently released their 2024 Threat Report which looked back at 900 million attacks observed in the threat landscape of 2024, up 114 percent from last year’s 420 million attacks. The report includes key findings related to OT/ICS infrastructure and offers strategic recommendations for improved defense in 2025 in the recommended mitigation section.

Read more about (TLP:CLEAR) Forescout’s 2024 Global Threat Roundup

(TLP:CLEAR) Urgent High Severity Vulnerability in VMWare Aria Operations for Logs

Summary: Today, Broadcom released a security advisory for five vulnerabilities, the most severe being CVE-2025-22218 in VMWare Aria Operations, can result in an escalation of privileges to the admin user account via cross-site scripting.

Read more about (TLP:CLEAR) Urgent High Severity Vulnerability in VMWare Aria Operations for Logs

(TLP:CLEAR) Supplemental Cyber Highlights – January 30, 2025

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience

Read more about (TLP:CLEAR) Supplemental Cyber Highlights – January 30, 2025

(TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 30, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about (TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 30, 2025

House Committee Hearing – Unconstrained Actors: Assessing Global Cyber Threats to the Homeland

During the House Committee Hearing held yesterday, four witnesses addressed the escalating threats posed by nation-state actors, particularly from the People’s Republic of China (PRC). They highlighted the increased sophistication and operational capabilities of these threat actors and noted a rise in cyber intrusions targeting U.S. critical infrastructure. Witnesses also cited recent incidents at water utilities.

Read more about House Committee Hearing – Unconstrained Actors: Assessing Global Cyber Threats to the Homeland

Cyber Resilience – Tenable Analysis of Salt Typhoon and Exploited Vulnerabilities

Cybersecurity firm Tenable recently released an analysis of People’s Republic of China’s (PRC)-affiliated threat actor Salt Typhoon and examines the vulnerabilities and tactics employed by the group. Salt Typhoon has infiltrated at least nine U.S.-based telecommunications companies and has utilized various tactics, primarily exploiting vulnerabilities, to gain access.

Read more about Cyber Resilience – Tenable Analysis of Salt Typhoon and Exploited Vulnerabilities

Vulnerability Awareness – Joint Advisory on Ivanti Exploit Chains by Suspected Chinese Threat Actors

Yesterday, CISA and the FBI released a joint advisory that included technical details of at least two exploit chains used by threat actors to break into Ivanti Cloud Service Appliances (CSA). The advisory comes in response to active exploitation in Ivanti CSA of the following vulnerabilities:

Read more about Vulnerability Awareness – Joint Advisory on Ivanti Exploit Chains by Suspected Chinese Threat Actors

Supplemental Cyber Highlights – January 23, 2025

Critical Infrastructure Resilience

Read more about Supplemental Cyber Highlights – January 23, 2025

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 23, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 23, 2025

You are here

Cybersecurity

(TLP:CLEAR) Recorded Future’s 2024 Threat Analysis and 2025 Predictions

(TLP:CLEAR) Forescout’s 2024 Global Threat Roundup

(TLP:CLEAR) Urgent High Severity Vulnerability in VMWare Aria Operations for Logs

(TLP:CLEAR) Supplemental Cyber Highlights – January 30, 2025

(TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 30, 2025

House Committee Hearing – Unconstrained Actors: Assessing Global Cyber Threats to the Homeland

Cyber Resilience – Tenable Analysis of Salt Typhoon and Exploited Vulnerabilities

Vulnerability Awareness – Joint Advisory on Ivanti Exploit Chains by Suspected Chinese Threat Actors

Supplemental Cyber Highlights – January 23, 2025

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 23, 2025

Pages

You are here

Cybersecurity

Pages

Footer Email Signup