(TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – May 29, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

On May 29, 2025, CISA Released Five Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:

• Siemens SiPass
• Siemens SiPass Integrated
• Consilium Safety CS5000 Fire Panel – Used in Energy
• Instantel Micromate
• Santesoft Sante DICOM Viewer Pro

On May 27, 2025, CISA Released One Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:

• Johnson Controls iSTAR Configuration Utility (ICU) Tool – Used in Energy

Additional Alerts, Updates, and Bulletins:

• New Guidance for SIEM and SOAR Implementation
• Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)