Cybersecurity

Passthrough – (TLP:CLEAR) MS-ISAC Report on How GenAI can be Coerced into a Malicious Response

MS-ISAC, in coordination with the Elections Infrastructure ISAC (EI-ISAC), recently released a cyber threat intelligence (CTI) report titled: An Examination of How Cyber Threat Actors Can Leverage Generative AI Platforms. The report covers the testing conducted by the Center for Internet Security’s (CIS) Cyber Threat Intelligence team to understand how threat actors can leverage GenAI platforms, circumvent usage policies, and generate elections-focused phishing emails.

Read more about Passthrough – (TLP:CLEAR) MS-ISAC Report on How GenAI can be Coerced into a Malicious Response

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 21, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases One Industrial Control Systems Advisory

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 21, 2024

Supplemental Cyber Highlights – May 16, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

Read more about Supplemental Cyber Highlights – May 16, 2024

Risk Awareness – Concerns of Session Token Vulnerabilities of FIDO2 Authentication

While FIDO2 is “phishing-resistant” to credential stealing, it was also designed with the intent to further protect against session hijacking and man-in-the-middle (MiTM) attacks. Silverfort suggests that most applications do not protect the session tokens created after FIDO authentication is successful and that many identity providers are still vulnerable to MiTM and session hijacking attack types.

Read more about Risk Awareness – Concerns of Session Token Vulnerabilities of FIDO2 Authentication

Passthrough – CISA Updates Public Safety Communications and Cyber Resiliency Toolkit

CISA recently updated its Public Safety Communications and Cyber Resiliency Toolkit with nine additional resources including an interactive graphic. The toolkit is designed to assist public safety agencies and others responsible for communications networks by providing the tools necessary to evaluate current resiliency capabilities.

Read more about Passthrough – CISA Updates Public Safety Communications and Cyber Resiliency Toolkit

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 16, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Seventeen Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 16, 2024

Ransomware Resilience – NCSC Shares Guidance for Organizations Considering Payment in Ransomware Incidents

Analyst Comment (Jennifer Lyn Walker): The decision to pay or not to pay a ransomware extortion demand isn’t always as straightforward as we’d like. The NCSC puts forth some poignant considerations. Members are strongly encouraged to incorporate these considerations into ransomware response plans and discuss them with leadership BEFORE you experience a ransomware incident.

Read more about Ransomware Resilience – NCSC Shares Guidance for Organizations Considering Payment in Ransomware Incidents

Passthrough – CISA and Partners Release Advisory on Black Basta Ransomware

On Friday, CISA, the FBI, and MS-ISAC released a joint Cybersecurity Advisory (CSA): “#StopRansomware: Black Basta” which provides cybersecurity defenders tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) used by known Black Basta ransomware affiliates.

Read more about Passthrough – CISA and Partners Release Advisory on Black Basta Ransomware

Supplemental Cyber Highlights – May 14, 2024

Critical Infrastructure Vulnerabilities & Resilience

Read more about Supplemental Cyber Highlights – May 14, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 14, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Four Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 14, 2024

You are here

Cybersecurity

Passthrough – (TLP:CLEAR) MS-ISAC Report on How GenAI can be Coerced into a Malicious Response

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 21, 2024

Supplemental Cyber Highlights – May 16, 2024

Risk Awareness – Concerns of Session Token Vulnerabilities of FIDO2 Authentication

Passthrough – CISA Updates Public Safety Communications and Cyber Resiliency Toolkit

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 16, 2024

Ransomware Resilience – NCSC Shares Guidance for Organizations Considering Payment in Ransomware Incidents

Passthrough – CISA and Partners Release Advisory on Black Basta Ransomware

Supplemental Cyber Highlights – May 14, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 14, 2024

Pages

You are here

Cybersecurity

Pages

Footer Email Signup