Cybersecurity

Insider Threat Awareness - Don’t Let End-User Errors Cost You

A key indicator of an organization's overall cyber health is the daily activities and behaviors of its users. Even with effective policies, training, and security measures, we all have the potential to make mistakes – including some that can be significantly damaging. The World Economic Forum (WEF) emphasizes this concern, revealing that 95% of cybersecurity incidents stem from human error. Consider the following five prevalent cybersecurity mistakes made by well-intentioned employees.

Read more about Insider Threat Awareness - Don’t Let End-User Errors Cost You

Supplemental Cyber Highlights – July 18, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

IT Vulnerabilities & Security Updates

Read more about Supplemental Cyber Highlights – July 18, 2024

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 18, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 18, 2024

Ransomware Resilience – Sophos Report Analyzes Ransomware in Critical Infrastructure

Sophos published its The State of Ransomware in Critical Infrastructure 2024 report yesterday offering a comprehensive glimpse into the state of ransomware within the energy, oil/gas, and utilities sector in 2024. The report sheds light on persistent challenges and evolving trends in the sector, highly applicable to the water and wastewater systems sector. While the report indicates that recovery rates have remained steady, there is a growing trend of critical infrastructure organizations choosing to pay the ransom rather than use their backups for data recovery.

Read more about Ransomware Resilience – Sophos Report Analyzes Ransomware in Critical Infrastructure

Security Awareness – Just in Time for Prime (Day)!

Whether your utility allows access to Amazon from the enterprise network or not, users are likely to be somewhat distracted during Prime Day. Members are encouraged to share this post with everyone as a reminder to maintain vigilance for Prime Day scams and phishing attempts.

Read more about Security Awareness – Just in Time for Prime (Day)!

Supplemental Cyber Highlights – July 16, 2024

Critical Infrastructure

Read more about Supplemental Cyber Highlights – July 16, 2024

Cyber Resilience – The Importance of Proper Communication During an Incident

While cybersecurity teams tend to focus on the technical aspects of preventing and responding to incidents, an often overlooked, yet crucial feature of incident response is the importance of crisis communication. Effective communication during a cyber attack can help maintain customer trust, mitigate further damage to the brand, and ultimately lead to a smoother recovery process. Three key elements to building a foundation for successful crisis management include: creation of a crisis communication committee, developing a crisis communication plan, and conducting breach simulations.

Read more about Cyber Resilience – The Importance of Proper Communication During an Incident

CISA Alert – AT&T Discloses Breach of Customer Data

CISA sent out an alert on Friday regarding AT&T's recent disclosure of a data breach. AT&T reported unauthorized access of customer data in a third-party cloud platform. CISA encourages affected customers to review AT&T’s disclosure for additional information and guidance.

What Happened

Read more about CISA Alert – AT&T Discloses Breach of Customer Data

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

Supplemental Cyber Highlights – July 11, 2024

Critical Infrastructure

Read more about Supplemental Cyber Highlights – July 11, 2024

You are here

Cybersecurity

Insider Threat Awareness - Don’t Let End-User Errors Cost You

Supplemental Cyber Highlights – July 18, 2024

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 18, 2024

Ransomware Resilience – Sophos Report Analyzes Ransomware in Critical Infrastructure

Security Awareness – Just in Time for Prime (Day)!

Supplemental Cyber Highlights – July 16, 2024

Cyber Resilience – The Importance of Proper Communication During an Incident

CISA Alert – AT&T Discloses Breach of Customer Data

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

Supplemental Cyber Highlights – July 11, 2024

Pages

You are here

Cybersecurity

Pages

Footer Email Signup