Cybersecurity

Threat Awareness – Iranian Threat Actor Mint Sandstorm Increasingly Targeting US Critical Infrastructure In 2023

Microsoft has posted a blog providing details on Mint Sandstorm, a threat actor group previously labeled PHOSPHORUS and who is believed to be associated with the Islamic Revolutionary Guard Corps, the intelligence arm of Iran’s military. Over the past year, the group has shifted from network reconnaissance activities to actively targeting U.S. critical infrastructure, including the energy, transportation systems, and chemical sectors.

Read more about Threat Awareness – Iranian Threat Actor Mint Sandstorm Increasingly Targeting US Critical Infrastructure In 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 18, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 18, 2023

Threat Awareness – Qbot Malware Propagating via Email Hijacking

Qbot malware is once again propagating by exploiting companies email chains, allowing the threat actors behind the malware to compromise more victims and conduct other malicious activities, according to security researchers at Kaspersky.

Read more about Threat Awareness – Qbot Malware Propagating via Email Hijacking

Cyber Resilience – CISA Publishes Updated Guidance Documents on Software Bill of Materials (SBOM) and Trusted Internet Connections

Yesterday, CISA released the Software Bill of Materials (SBOM) Sharing Lifecycle Report to the cybersecurity and supply chain community.

Read more about Cyber Resilience – CISA Publishes Updated Guidance Documents on Software Bill of Materials (SBOM) and Trusted Internet Connections

New WaterISAC Champion - Luminary Automation, Cybersecurity and Engineering, LLC

WaterISAC continues to expand its list of Champions with Luminary Automation, Cybersecurity and Engineering, LLC (Luminary A.C.E.). Luminary A.C.E. is a certified minority-owned and veteran-owned cybersecurity consulting, technology, and engineering firm. They act as a vendor-neutral strategic partner for water and wastewater utilities by assessing, implementing, and managing OT infrastructure to increase operational resilience and cybersecurity readiness.

Read more about New WaterISAC Champion - Luminary Automation, Cybersecurity and Engineering, LLC

Cyber Resilience – Wargaming as a Powerful Tool to Help Build Incident Response Playbooks

Help Net Security has written an article discussing the merits of wargaming to help build well-practiced data breach response processes. The author argues that drilling a wide variety of “what if” scenarios is an effective way for security teams to add new annexes to their existing incident response playbooks, as well as practice emergency communications in a risk-free environment.

Read more about Cyber Resilience – Wargaming as a Powerful Tool to Help Build Incident Response Playbooks

Joint Cybersecurity Advisory Highlights Continued Risk Posed by Devices Left Unpatched

While patching vulnerabilities is challenging for defenders, exploiting vulnerabilities left unpatched is not so challenging for threat actors.

Read more about Joint Cybersecurity Advisory Highlights Continued Risk Posed by Devices Left Unpatched

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 13, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 13, 2023

Study: Insider Threat Caused by Workers Using Former Employers’ Passwords

PasswordManager has written an article discussing a survey of 1000 U.S. workers the site conducted to better understand employee password hygiene after leaving their company. According to the report, 47 percent of respondents still used their employers’ passwords after leaving the company; 56 percent of which did so for their personal use.

Read more about Study: Insider Threat Caused by Workers Using Former Employers’ Passwords

Security Awareness – Zero-Days Increase in Popularity for Ransomware Groups

Kaspersky’s SecureList has published a blog detailing an observed Nokoyawa ransomware attack utilizing a previously unknown Microsoft vulnerability. While the use of zero-days is mostly associated with nation-state threat groups, the actors behind Nokoyawa ransomware are known for their technical sophistication and tendency to utilize exploits targeting the Common Log File System, of which the zero day was associated with.

Read more about Security Awareness – Zero-Days Increase in Popularity for Ransomware Groups

You are here

Cybersecurity

Threat Awareness – Iranian Threat Actor Mint Sandstorm Increasingly Targeting US Critical Infrastructure In 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 18, 2023

Threat Awareness – Qbot Malware Propagating via Email Hijacking

Cyber Resilience – CISA Publishes Updated Guidance Documents on Software Bill of Materials (SBOM) and Trusted Internet Connections

New WaterISAC Champion - Luminary Automation, Cybersecurity and Engineering, LLC

Cyber Resilience – Wargaming as a Powerful Tool to Help Build Incident Response Playbooks

Joint Cybersecurity Advisory Highlights Continued Risk Posed by Devices Left Unpatched

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 13, 2023

Study: Insider Threat Caused by Workers Using Former Employers’ Passwords

Security Awareness – Zero-Days Increase in Popularity for Ransomware Groups

Pages

You are here

Cybersecurity

Pages

Footer Email Signup