Cybersecurity

Ransomware Resilience – Incomplete Remediation Results in Ransomware Reinfection

According to a recent report from Malwarebytes, ransomware attacks don't typically originate as a fresh problem for organizations; instead, they are largely the grim culmination of unresolved network compromises and inefficient security controls. According to the report, threat actors gain initial access through stolen login credentials, deployed malware, or established backdoors. The report notes that the majority of reinfections stem from the failure to address underlying vulnerabilities that led to the initial breach and improper remediations.

Read more about Ransomware Resilience – Incomplete Remediation Results in Ransomware Reinfection

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 5, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Three Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 5, 2023

CISA and NSA Release New Guidance on Identity and Access Management

CISA and the National Security Agency (NSA) have published Identity and Access Management: Developer and Vendor Challenges, authored by the Enduring Security Framework (ESF), a CISA- and NSA-led working panel that includes a public-private cross-sector partnership.

Read more about CISA and NSA Release New Guidance on Identity and Access Management

Supplemental Cyber Highlights – October 3, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

ICS/OT/SCADA Vulnerabilities & Threats

Read more about Supplemental Cyber Highlights – October 3, 2023

Stay Safe Online – Cybersecurity Awareness Month is Here

WaterISAC is once again a Champion of Cybersecurity Awareness Month. This October marks the 20th anniversary of this critical initiative.

Read more about Stay Safe Online – Cybersecurity Awareness Month is Here

Security Awareness – AI Makes Difficult to Detect Emails Even More Challenging

In a report by Egress, researchers found that human-generated phishing campaigns are getting harder to detect, with a 24.4% increase in obfuscation techniques integrated into over half (55%) of phishing emails in 2023. These techniques have also grown in sophistication, with almost half (47%) of phishing threat actors deploying two obfuscation layers, while less than one-third (31%) use only one technique.

Read more about Security Awareness – AI Makes Difficult to Detect Emails Even More Challenging

Cyber Resilience – Impact on National Security in the Face of Government Shutdowns

In a recent report from Forbes, the nation's cybersecurity was in a tight spot when Congress passed a bill to keep the government running for the next 45 days. A government shutdown could have caused problems for many government functions, including those responsible for protecting the country from cyberattacks. Depending on how long the shutdown lasted, it could have led to a crisis for companies and organizations across the country.

Read more about Cyber Resilience – Impact on National Security in the Face of Government Shutdowns

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 3, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Alerts, Updates, and Bulletins:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 3, 2023

NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management

The National Security Agency (NSA) has released the Cybersecurity Information Sheet (CSI) “Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers,” encouraging U.S. government departments and agencies operating National Security Systems (NSS) to implement a robust supply chain risk management strategy.

Read more about NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management

Joint Cybersecurity Advisory – People's Republic of China-Linked Cyber Actors Hide in Router Firmware

WaterISAC regularly provides awareness of recent CISA reporting. While direct relevance to your utility/organization on the details of each report may vary, activity alerts like this are practical for general awareness and greater understanding of active threats and adversary capabilities.

Read more about Joint Cybersecurity Advisory – People's Republic of China-Linked Cyber Actors Hide in Router Firmware

You are here

Cybersecurity

Ransomware Resilience – Incomplete Remediation Results in Ransomware Reinfection

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 5, 2023

CISA and NSA Release New Guidance on Identity and Access Management

Supplemental Cyber Highlights – October 3, 2023

Stay Safe Online – Cybersecurity Awareness Month is Here

Security Awareness – AI Makes Difficult to Detect Emails Even More Challenging

Cyber Resilience – Impact on National Security in the Face of Government Shutdowns

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – October 3, 2023

NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management

Joint Cybersecurity Advisory – People's Republic of China-Linked Cyber Actors Hide in Router Firmware

Pages

You are here

Cybersecurity

Pages

Footer Email Signup