CISA, the FBI, and the Department of Health and Human Services (HHS) released an update to the joint advisory #StopRansomware: ALPHV Blackcat to provide new indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) associated with the ALPHV Blackcat ransomware as a service (RaaS). ALPHV Blackcat affiliates have been observed primarily targeting the healthcare sector.
The FBI, NSA, U.S. Cyber Command, and international partners are releasing this joint Cybersecurity Advisory (CSA) to warn of Russian state-sponsored cyber actors’ use of compromised Ubiquiti EdgeRouters (EdgeRouters) to facilitate malicious cyber operations worldwide.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
Following the international takedown operation of the LockBit ransomware group last week – which disrupted LockBit’s criminal network infrastructure and arrested two of its members – the ransomware group’s leader, known as LockBitSupp, has issued a lengthy message on a new dark web site with additional threats and promises of return.
CISA and other U.S. and international partners including the U.K. National Cyber Security Centre (NCSC), released a joint advisory yesterday - SVR Cyber Actors Adapt Tactics for Initial Cloud Access.
CISA and partners updated the recent Fact Sheet – Top Cyber Actions for Securing Water Systems – with resources from water and wastewater systems sector organizations, including WaterISAC. The resources are intended to help support water systems in defending against malicious cyber activity. They include:
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – February 27, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
Next week, on Tuesday February 27, at 2 p.m. ET, EPA is hosting a free virtual webinar on physical security and cybersecurity threats to the water and wastewater sector. The briefing will be unclassified, and no clearance is required. WaterISAC staff, along with other federal partners, will be conducting the brief.
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – February 22, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
