Last week, the Cybersecurity and Infrastructure Security Agency (CISA) in partnership with the Department of Energy’s Pacific Northwest National Lab released RedEye, an interactive open-source analytic tool for use by network defenders and Red Teams to visualize and report command and control activities.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
The U.K.’s National Cyber Security Centre (NCSC) published guidance offering practical steps to assist medium to large organizations in more confidently assessing and strengthening their supply chain cybersecurity.
Its Fall, the leaves are changing color, and we continue our observance of Cybersecurity Awareness Month. This month is intended to engage and educate public and private-sector partners through events and initiatives with the goal of raising awareness about cybersecurity to increase the resiliency of the nation and the critical infrastructure that sustains our communities.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
by Jennifer Lyn Walker
The National Cybersecurity Alliance’s Cybersecurity Awareness Month post this week is on password managers, specifically the risks of using them. For this post, they turned to one of the top security awareness minds, KnowBe4’s Roger Grimes – check out WaterISAC’s January 26, 2022 WaterISAC Cyber Threat Briefing featuring Roger!
Yesterday, VMware's Threat Analysis Unit published a detailed report on the infamous Emotet malware using data gathered from attacks since January 2022. The study’s key findings include that Emotet’s attack patterns are constantly evolving, the malware is modular and can serve a number of attack purposes, Emotet authors are hiding their command and control (C2) infrastructure, and the infrastructure is always shifting.
Threat actors associated with the BlackByte ransomware group are employing a new sophisticated technique, dubbed “Bring Your Own Driver,” which enables attackers to bypass system and network defenses by disabling more than 1,000 drivers used by various security solutions, according to security researchers at Sophos. Researchers analyzed past attacks and found that Blackbyte threat actors have exploited known vulnerabilities in legitimate drivers resulting in disabled drivers and the prevention of endpoint detection and response (EDR) and antivirus products from operating normally.
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have published a Public Service Announcement (PSA) to raise awareness of the potential threat posed by foreign cyber actors attempting to manipulate information or spread disinformation in the lead up to and after the 2022 midterm elections.
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
