Cybersecurity

Cyber Resilience – CISA Publishes Fact Sheet on Free Cyber Vulnerability Scanning Services Available to Water and Wastewater Utilities

On Monday, September 11, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) published a fact sheet on its free Cyber Vulnerability Scanning (VS) service for Water and Wastewater utilities. The fact sheet was developed in coordination with the EPA, the Water Sector Coordinating Council (WSCC), and the Association of State Drinking Water Administrators (ASDWA).

Read more about Cyber Resilience – CISA Publishes Fact Sheet on Free Cyber Vulnerability Scanning Services Available to Water and Wastewater Utilities

Insider Threat Awareness – Understanding and Mitigating the Risk of Insider Threats

Every organization is vulnerable to insider threats. As more organizations migrate their business operations to digital platforms the risk of a compromise due to an insider threat will continue to grow. Research for the latest Data Breach Investigations Report from Verizon found that 74% of data breaches involved a human element, highlighting the enduring risk both malicious and unintentional insider threats pose.

Read more about Insider Threat Awareness – Understanding and Mitigating the Risk of Insider Threats

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 7, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Four Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 7, 2023

CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

The Cybersecurity and Infrastructure Security Agency (CISA) has released an update to a previously published Cybersecurity Advisory (CSA), Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells. The updated CSA contains victim information gathered in August 2023.

Read more about CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack

CISA has released actionable guidance for Federal Civilian Executive Branch (FCEB) agencies to help them evaluate and mitigate the risk of volumetric distributed denial-of-service (DDoS) attacks against their websites and related web services. The Capacity Enhancement Guide: Volumetric DDoS Against Web Services Technical Guidance:

Read more about CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack

W3LL: Mature, Phishing-Focused Underground Marketplace Uncovered by Researchers

Group-IB has posted a blog discussing its research into W3LL, a mature, phishing-focused threat actor that has developed and is selling a phishing kit capable of bypassing MFA.

Read more about W3LL: Mature, Phishing-Focused Underground Marketplace Uncovered by Researchers

Supplemental Cyber Highlights – September 7, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Vulnerabilities & Resilience

Read more about Supplemental Cyber Highlights – September 7, 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 5, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Two Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 5, 2023

Cyber Resilience – How to Detect and Defend Against Phishing Emails

Phishing continues to be one of the primary methods of attacks used by cyber criminals. Proofpoint’s latest “State of the Phish” report found that 84% of organizations around the world experienced at least one successful phishing attack in 2022. More than half (54%) of organizations reported facing three or more of these attacks.

Read more about Cyber Resilience – How to Detect and Defend Against Phishing Emails

Security Awareness – Smishing Campaign Targeting U.S. Citizens in Postal Scam

A group of cyber criminals, tracked as “Smishing Triad,” is conducting a large-scale smishing (SMS phishing) campaign targeting U.S. citizens and purporting to be from the United States Postal Service (USPS), according to security researchers at Resecurity. Since users typically trust SMS communication channels more than e-mail, this campaign has reportedly compromised over 100,000 victims.

Read more about Security Awareness – Smishing Campaign Targeting U.S. Citizens in Postal Scam

You are here

Cybersecurity

Cyber Resilience – CISA Publishes Fact Sheet on Free Cyber Vulnerability Scanning Services Available to Water and Wastewater Utilities

Insider Threat Awareness – Understanding and Mitigating the Risk of Insider Threats

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 7, 2023

CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack

W3LL: Mature, Phishing-Focused Underground Marketplace Uncovered by Researchers

Supplemental Cyber Highlights – September 7, 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – September 5, 2023

Cyber Resilience – How to Detect and Defend Against Phishing Emails

Security Awareness – Smishing Campaign Targeting U.S. Citizens in Postal Scam

Pages

You are here

Cybersecurity

Pages

Footer Email Signup