Dark Reading has written an article discussing LockBit ransomware group and a recently observed evolution of its tactics to include the use of remote monitoring and management (RMM) software to expand its presence once on a victim’s network.
Chinese state-sponsored cyber actors represent one of the most pervasive cyber threats facing the U.S. and its Western allies today. In the event of a conflict with the U.S., China would likely launch destructive attacks against critical infrastructure in the homeland, according to the Department of Defense’s (DoD’s) latest Cyber Strategy.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
BleepingComputer has written an article discussing an observed BlackCat ransomware attack that utilized a new variant of the Sphynx encryptor with added support for using custom credentials.
Last week, CISA released the Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture to help federal civilian departments and agencies integrate their identity and access management (IDAM) capabilities into their ICAM architectures. This publication provides:
The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
Yesterday, CISA, the FBI, and the National Security Agency (NSA) published a Cybersecurity Information Sheet (CSI), Contextualizing Deepfake Threats to Organizations, to provide organizations with an overview of synthetic media threats, techniques, and trends.
Today the U.S. Department of Homeland Security released its 2024 Homeland Threat Assessment (HTA), which identifies a continuing high risk of foreign and domestic terrorism in 2024. Going forward, DHS intends to release an annual HTA in place of regular National Terrorism Advisory System (NTAS) bulletins.
The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
ICS/OT/SCADA Vulnerabilities
Siemens has posted 2 more security advisories on its site this week: Siemens Security Advisories
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
