Cybersecurity

CISA and FBI Publish Joint Advisory on QakBot Infrastructure

CISA and the FBI have released a joint Cybersecurity Advisory (CSA), Identification and Disruption of QakBot Infrastructure, to help organizations detect and protect against newly identified QakBot-related activity and malware. Originally used as a banking trojan to steal banking credentials for account compromise, QakBot has since grown to deploy multiple types of malware, trojans, and highly-destructive ransomware variants targeting the U.S.

Read more about CISA and FBI Publish Joint Advisory on QakBot Infrastructure

Cyber Resilience – 5 Ways to Maximize Your Organization’s Resiliency Rate

Security awareness training is a critical component for every organization’s cybersecurity program by helping to improve cyber resilience. To assist organizations with increasing their cyber resilience, Cofense has written a blog post outlining five ways to maximize their resiliency rate.

Read more about Cyber Resilience – 5 Ways to Maximize Your Organization’s Resiliency Rate

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – August 29, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases One Industrial Control Systems Advisory

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – August 29, 2023

Supplemental Cyber Highlights – August 29, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience

Read more about Supplemental Cyber Highlights – August 29, 2023

EPA Distributes Advisory Emphasizing Importance of Addressing Barracuda ESG Vulnerability

Yesterday, the EPA distributed a medium cybersecurity advisory (attached) emphasizing the recent FBI FLASH regarding Suspected People’s Republic of China (PRC) Cyber Actors Continue to Globally Exploit Barracuda Email Security Gateway (ESG). The EPA advisory recommends all drinking water and wastewater systems address and follow the mitigations contained in the FLASH.

Read more about EPA Distributes Advisory Emphasizing Importance of Addressing Barracuda ESG Vulnerability

CISA’s VDP Platform 2022 Annual Report Showcases Success

CISA has released its inaugural Vulnerability Disclosure Policy (VDP) Platform 2022 Annual Report, highlighting the service’s progress supporting vulnerability awareness and remediation across the Federal Civilian Executive Branch (FCEB).

Read more about CISA’s VDP Platform 2022 Annual Report Showcases Success

Trend Analysis Report – State and Local Government Organizations are Attractive Targets for Ransomware, BEC

Sentinel One has written a blog discussing the types of cyberthreats that state and local government entities face and why they are the targets of these threats.

Read more about Trend Analysis Report – State and Local Government Organizations are Attractive Targets for Ransomware, BEC

Ransomware Resilience – Renew Your Ransomware Defense with CISA's Updated Guidance

The Cyber Threat Intelligence (CTI) team at the Multi-State Information Sharing and Analysis Center (MS-ISAC) worked with CISA, along with other federal partners, to release an updated #StopRansomware Guide, which was published earlier this summer.

Read more about Ransomware Resilience – Renew Your Ransomware Defense with CISA's Updated Guidance

Network Defense – Think of Network Intruders Like Tourists Giving Themselves Away

This recent post by Brian Krebs is an interesting read for everyone, but security analysts, sysadmins, and other network defenders particularly should find this perspective interesting. This article suggests that a great many initial intrusions that lead to data theft could be nipped in the bud if more organizations started looking for the telltale signs of newly-arrived cybercriminals behaving like network tourists and how doing so can mean the difference between catching a compromise in week-1 (before the attackers dig in) and learning about the attack on CNN.

Read more about Network Defense – Think of Network Intruders Like Tourists Giving Themselves Away

Supplemental Cyber Highlights – August 24, 2023

Critical Infrastructure (Vulnerabilities & Threats to ICS/OT/SCADA)

Read more about Supplemental Cyber Highlights – August 24, 2023

You are here

Cybersecurity

CISA and FBI Publish Joint Advisory on QakBot Infrastructure

Cyber Resilience – 5 Ways to Maximize Your Organization’s Resiliency Rate

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – August 29, 2023

Supplemental Cyber Highlights – August 29, 2023

EPA Distributes Advisory Emphasizing Importance of Addressing Barracuda ESG Vulnerability

CISA’s VDP Platform 2022 Annual Report Showcases Success

Trend Analysis Report – State and Local Government Organizations are Attractive Targets for Ransomware, BEC

Ransomware Resilience – Renew Your Ransomware Defense with CISA's Updated Guidance

Network Defense – Think of Network Intruders Like Tourists Giving Themselves Away

Supplemental Cyber Highlights – August 24, 2023

Pages

You are here

Cybersecurity

Pages

Footer Email Signup