(TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 29, 2026
Created: Thursday, January 29, 2026 - 14:13
Categories: Cybersecurity, Federal & State Resources, OT-ICS Security
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
On January 29, 2026, CISA Released Six Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
- KiloView Encoder Series
- Rockwell Automation ArmorStart LT
- Rockwell Automation ControlLogix – Used in Water and Wastewater Systems and Energy
- BrightSign Players (Update A)
- Mitsubishi Electric Iconics Digital Solutions / Mitsubishi Electric GENESIS64 (Update D)
- Mitsubishi Electric CNC Series (Update B)
On January 27, 2026, CISA Released Four Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
- iba Systems ibaPDA
- Festo Didactic SE MES PC – Used in Energy
- Schneider Electric Zigbee Products – Used in Energy
- Johnson Controls Products – Used in Energy
Additional Alerts, Updates, and Bulletins:
- January 27 – CISA Adds One Known Exploited Vulnerability to Catalog
- January 26 – CISA Adds Five Known Exploited Vulnerabilities to Catalog
- January 23 – CISA Adds One Known Exploited Vulnerability to Catalog
- Fortinet Releases Guidance to Address Ongoing Exploitation of Authentication Bypass Vulnerability CVE-2026-24858
- Product Categories for Technologies That Use Post-Quantum Cryptography Standards
- Public Webinar: NIST IR 8587 Protecting Tokens and Assertions from Forgery, Theft, and Misuse