(TLP:CLEAR) CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – October 30, 2025
Created: Thursday, October 30, 2025 - 12:53
Categories: Cybersecurity, Federal & State Resources, OT-ICS Security
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
On October 30, 2025, CISA Released Two Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
- International Standards Organization ISO 15118-2
- Hitachi Energy TropOS – Used in Energy
On October 28, 2025, CISA Released Three Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
- Schneider Electric EcoStruxure – Used in Energy
- Vertikal Systems Hospital Manager Backend Services
- Schneider Electric Modicon (Update B) – Used in Energy
Additional Alerts, Updates, and Bulletins:
- October 28 – CISA Adds Two Known Exploited Vulnerabilities to Catalog
- October 24 – CISA Adds Two Known Exploited Vulnerabilities to Catalog
- New Guidance Released on Microsoft Exchange Server Security Best Practices
- Microsoft Releases Out-of-Band Security Update to Mitigate Windows Server Update Service Vulnerability, CVE-2025-59287