Cybersecurity

H2OSecCon Sponsorship Opportunities Now Available!

Expand your exposure and support this one-of-a-kind virtual event focused on security for the water and wastewater sector. The 2nd annual H2OSecCon will be held virtually from October 19 - 20. This conference brings together hundreds of attendees from water and wastewater utilities to provide panels and sessions around IT and OT security, physical security, and resilience. Sponsorships start at $1,500. Full prospectus with pricing and details can be found in the PDF below.

Read more about H2OSecCon Sponsorship Opportunities Now Available!

Threat Awareness – Nitrogen Malware Propagates via Search Engine Ads to Conduct Ransomware Attacks

A recently discovered initial access malware family dubbed Nitrogen exploits Google and Bing search advertisements to promote fake software webpages that can infect victims with Cobalt Strike and ransomware payloads, according to security researchers at Sophos.

Read more about Threat Awareness – Nitrogen Malware Propagates via Search Engine Ads to Conduct Ransomware Attacks

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 27, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Five Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 27, 2023

Cyber Resilience – CISA Announces Effort to Create Sector-Specific Cybersecurity Performance Goals

CISA is working with Sector Risk Management Agencies (SRMAs) to directly engage with each critical infrastructure sector to develop Sector-Specific Goals (SSGs). In most instances, these goals will likely consist of either new, unique goals with direct applicability to a given sector, or materials to assist sector constituents with effective implementation of the existing cross-sector CPGs.

Read more about Cyber Resilience – CISA Announces Effort to Create Sector-Specific Cybersecurity Performance Goals

Report – CISA Releases Analysis of FY22 Risk and Vulnerability Assessments

CISA has released an analysis and infographic detailing the findings from the 121 Risk and Vulnerability Assessments (RVAs) conducted across multiple critical infrastructure sectors in fiscal year 2022 (FY22).

Read more about Report – CISA Releases Analysis of FY22 Risk and Vulnerability Assessments

Cyber Resilience – How the Threat Environment Could Shift in a Passwordless Future

Cisco Talos has written a blog post discussing how criminal activity might shift in response to the embrace of stronger user authentication methods, such as universal MFA and passwordless logins.

Read more about Cyber Resilience – How the Threat Environment Could Shift in a Passwordless Future

Supplemental Cyber Highlights – July 27, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

ICS/OT/SCADA

Read more about Supplemental Cyber Highlights – July 27, 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 25, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Four Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 25, 2023

Cybersecurity Advisory – Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

Last week, CISA published a Cybersecurity Advisory (CSA) to warn network defenders about threat actors exploiting CVE-2023-3519, an unauthenticated remote code execution (RCE) vulnerability affecting NetScaler (formerly Citrix) Application Delivery Controller (ADC) and NetScaler Gateway.

Read more about Cybersecurity Advisory – Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

Threat Awareness – Impacts of Stolen Microsoft Encryption Key Potentially Extend to Other Microsoft Platforms

Wiz has posted a blog discussing the implications of the recently announced security incident affecting Microsoft where a Chinese-attributed threat actor stole a private encryption key to forge access tokens for various Outlook products. After conducting further technical analysis, researchers believe that this stolen key could also impact users of Azure Active Directory, SharePoint, Teams, and OneDrive.

Read more about Threat Awareness – Impacts of Stolen Microsoft Encryption Key Potentially Extend to Other Microsoft Platforms

You are here

Cybersecurity

H2OSecCon Sponsorship Opportunities Now Available!

Threat Awareness – Nitrogen Malware Propagates via Search Engine Ads to Conduct Ransomware Attacks

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 27, 2023

Cyber Resilience – CISA Announces Effort to Create Sector-Specific Cybersecurity Performance Goals

Report – CISA Releases Analysis of FY22 Risk and Vulnerability Assessments

Cyber Resilience – How the Threat Environment Could Shift in a Passwordless Future

Supplemental Cyber Highlights – July 27, 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – July 25, 2023

Cybersecurity Advisory – Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells

Threat Awareness – Impacts of Stolen Microsoft Encryption Key Potentially Extend to Other Microsoft Platforms

Pages

You are here

Cybersecurity

Pages

Footer Email Signup