Reminder: Action may be required if your utility uses affected versions of Ivanti Connect Secure and Policy Secure Gateways. Please have systems administrators address promptly, if they have not already.
Additionally, impacted utilities are strongly encouraged to conduct continuous threat hunting, regardless of the mitigations implemented and regardless of external or internal ICT results.
In Tuesday’s Security & Resilience Update, WaterISAC shared breaking news from Reuters regarding the U.S. Disruption of Chinese Threats to Critical Infrastructure, to include activity from the group tracked as Volt Typhoon. Yesterday, top U.S. officials confirmed that it disrupted a botnet run by the prolific Chinese government-aligned threat group.
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – February 1, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Attention: Action may be required. If your utility uses affected versions (9.x and 22.x) of Ivanti Connect Secure and Policy Secure Gateways, please have systems administrators address promptly.
For months, WaterISAC has been tracking and sharing various developments regarding Chinese state-affiliated actors, Volt Typhoon and the threat this group’s tactics pose to U.S. critical infrastructure, including water and wastewater infrastructure. Earlier today, Reuters published an exclusive report highlighting recent U.S. government actions to fight this pervasive threat. WaterISAC is providing this developing situation for awareness and will continue to track and report accordingly.
Today, CISA and the EPA jointly released a Water Sector Cybersecurity Toolkit to aid water and wastewater sector stakeholders in bolstering their cybersecurity preparedness. The toolkit can help water and wastewater utilities build their cybersecurity foundation and progress to implement more advanced, complex tools to strengthen their
Update to include key witnesses:
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – January 30, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA Releases Two Industrial Control Systems Advisories
Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
