Cybersecurity

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 9, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 9, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Four Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 9, 2024

Supplemental Cyber Highlights – May 7, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

Read more about Supplemental Cyber Highlights – May 7, 2024

Ransomware Incident Awareness – City of Wichita Public Services Disrupted After Ransomware Incident

WaterISAC is sharing this for member awareness. The City of Wichita reported a ransomware incident that started over the weekend and shut down much of the city’s core services which have yet to be restored. As reported, the incident affected a wide portion of public services including the city’s airport, public transport, and water department. It appears this incident has only impacted the water account billing systems, which is highly common with cyber incidents at cities/municipalities.

Read more about Ransomware Incident Awareness – City of Wichita Public Services Disrupted After Ransomware Incident

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 7, 2024

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 7, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Two Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 7, 2024

Supplemental Cyber Highlights – May 2, 2024

Critical Infrastructure

Read more about Supplemental Cyber Highlights – May 2, 2024

Passthrough – Joint CSA: North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts

The FBI, the Department of State, and the NSA jointly issued an advisory to highlight attempts by Democratic People’s Republic of Korea (DPRK, a.k.a. North Korea) Kimsuky cyber actors to exploit improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to conceal social engineering attempts.

Read more about Passthrough – Joint CSA: North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts

Threat Awareness – Dropbox Discloses Breach of Digital Signature Service Affecting All Users

WaterISAC is sharing this for member awareness. Utilities using Dropbox Sign (with or without an account) are encouraged to review and address accordingly.

Read more about Threat Awareness – Dropbox Discloses Breach of Digital Signature Service Affecting All Users

Cyber Resilience – CISA Emphasizes Threat Posed by China on Critical Infrastructure

Today, Andrew Scott, Associate Director for China Operations at CISA, drew more attention to the threat posed by China on critical infrastructure in a blog post.

Read more about Cyber Resilience – CISA Emphasizes Threat Posed by China on Critical Infrastructure

Passthrough – (TLP:CLEAR) Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

Yesterday, CISA and a cadre of U.S.

Read more about Passthrough – (TLP:CLEAR) Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

Passthrough – DHS Publishes Guidelines and Report to Secure Critical Infrastructure and Weapons of Mass Destruction from AI-Related Threats

Earlier this week,DHS marked the 180-day mark of President Biden’s Executive Order (EO) 14110, “Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (AI)” by unveiling new resources to address threats posed by AI including:

Read more about Passthrough – DHS Publishes Guidelines and Report to Secure Critical Infrastructure and Weapons of Mass Destruction from AI-Related Threats

You are here

Cybersecurity

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 9, 2024

Supplemental Cyber Highlights – May 7, 2024

Ransomware Incident Awareness – City of Wichita Public Services Disrupted After Ransomware Incident

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – May 7, 2024

Supplemental Cyber Highlights – May 2, 2024

Passthrough – Joint CSA: North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts

Threat Awareness – Dropbox Discloses Breach of Digital Signature Service Affecting All Users

Cyber Resilience – CISA Emphasizes Threat Posed by China on Critical Infrastructure

Passthrough – (TLP:CLEAR) Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

Passthrough – DHS Publishes Guidelines and Report to Secure Critical Infrastructure and Weapons of Mass Destruction from AI-Related Threats

Pages

You are here

Cybersecurity

Pages

Footer Email Signup