Passthrough – (TLP:CLEAR) Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity
Yesterday, CISA and a cadre of U.S.
H2OSecCon 2025- a virtual security event for the water sector - happening May 20th. Register Now!
Cybersecurity
Passthrough – DHS Publishes Guidelines and Report to Secure Critical Infrastructure and Weapons of Mass Destruction from AI-Related Threats
Earlier this week,DHS marked the 180-day mark of President Biden’s Executive Order (EO) 14110, “Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (AI)” by unveiling new resources to address threats posed by AI including:
Ransomware Resilience – Utilize CISA’s Ransomware Vulnerability Warning Pilot (RVWP)
In a recent blog post, CISA staff drew awareness to CISA’s Ransomware Vulnerability Warning Pilot (RVWP), a tool used to proactively reduce risk through direct communication with federal government, state, local, tribal, territorial (SLTT) government, and critical infrastructure entities to help combat ransomware.
Report – Verizon’s 2024 Data Breach Investigations Report (DBIR)
Verizon released its 2024 Verizon Data Breach Investigations Report yesterday, the 17th edition of one of the most sought-after annual reports – the DBIR – which catalogs and analyzes the past year’s trends in cyber crime and provides a comprehensive view of the global threat landscape. This year’s 100-page report covers cyber incidents and data breaches between November 1, 2022, and October 31, 2023, and includes a record 10,626 confirmed data breaches and 30,500 total incidents in its data set.
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 2, 2024
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 2, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
White House Releases New National Security Memorandum on Critical Infrastructure
Today, the White House issued the National Security Memorandum (NSM) on Critical Infrastructure Security and Resilience. This much-anticipated memorandum replaces Presidential Policy Directive 21 (PPD-21), which was issued more than a decade ago to establish national policy on critical infrastructure security and resilience. The NSM will help ensure U.S. critical infrastructure can provide the nation a strong and innovative economy, protect American families, and enhance our collective resilience to disasters before they happen.
Supplemental Cyber Highlights – April 30, 2024
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
General Awareness: Opinion Piece on “America’s small-town water systems are global cyber targets. Is your city next?”
WaterISAC is providing this for your awareness only.
Cyber Resilience During National Small Business Week
As part of National Small Business Week, CISA is sharing practical steps to secure your environment against cyber attacks. As small businesses often don’t have the resources to invest in cybersecurity, they become a target for cyber criminals.
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 30, 2024
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 30, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Pages
