July 4, 2024 at 06:37AM Microsoft has disclosed two security vulnerabilities in Rockwell Automation PanelView Plus, which could be exploited by remote attackers for remote code execution and denial-of-service (DoS) attacks. These flaws are tracked as CVE-2023-2071 and CVE-2023-29464, impacting FactoryTalk View Machine Edition and FactoryTalk Linx. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) … Read more
June 28, 2024 at 04:39AM Multiple security flaws in Emerson Rosemount gas chromatographs, impacting versions 4.1.5 and prior, have been disclosed. Claroty identified command injection, authentication, and authorization vulnerabilities, enabling attackers to execute arbitrary commands and access sensitive information. Emerson has released an updated firmware to address these issues and advises following cybersecurity best practices … Read more
June 24, 2024 at 09:08PM Multiple cyber-espionage groups compromised telecommunications operators in Asia-Pacific, using custom malware and backdoors. China-linked groups including Fireant, Neeedleminer, and Firefly were involved, targeting at least two countries. The attacks pose risks of eavesdropping, surveillance, and potential disruption to target countries’ critical infrastructure. Nations in the region continue to face escalating … Read more
June 20, 2024 at 11:54AM Symantec reports that telecommunications companies in an unnamed Asian country have been targeted by Chinese espionage groups since at least 2021. The campaign included the use of custom backdoors such as Coolclient, Quickheal, and Rainyday, associated with known Chinese state-sponsored threat actors. The motive and collaboration among the threat actors … Read more
June 20, 2024 at 07:15AM Cyber espionage linked to China has targeted telecom operators in an unnamed Asian country since at least 2021, using backdoors and attempting to steal credentials. The attacks also targeted a services company and a university in another Asian country. The campaign appears to involve tools used by various Chinese espionage … Read more
June 17, 2024 at 01:09PM The Francis Scott Key Bridge collapse in Baltimore stirred speculation about a cyberattack, highlighting the vulnerability of physical infrastructure to cyber threats. Despite the focus on physical incidents, silent cyberattacks on critical infrastructure, like the MITRE breach, remain poorly understood. The public’s fear of cyber threats necessitates greater awareness and … Read more
June 14, 2024 at 03:00AM Critical national infrastructure (CNI) is a prime target for sophisticated threat actors due to its vital role in supporting various industries. Recent reports highlight concerns over vulnerabilities, with fears of espionage from Chinese repair ships and state-sponsored cyber-attacks on CNI networks. Protecting CNI is crucial for national security, economic stability, … Read more
June 12, 2024 at 06:37PM With rising geopolitical tensions and cyber threats, Rockwell Automation advised customers to disconnect industrial control systems (ICS) from the internet to mitigate vulnerabilities. Cybersecurity experts warn of nation-state attacks targeting critical infrastructure, which face challenges due to online exposure and software vulnerabilities. Securing ICS assets and implementing offline measures are … Read more
June 7, 2024 at 11:15AM Webinar on managing cyber risk for cyber physical systems (CPS) and critical national infrastructure (CNI). Scheduled for June 10, 2024, it will cover NIS2 regulations’ impact on CPS risk management, the importance of exposure management over vulnerability management, and utilizing Claroty xDome to measure, manage, and reduce risk. Join to … Read more
June 3, 2024 at 05:07AM Join The Reg’s Tim Phillips on 10 June 2024 at 3pm BST/10am EDT/7am PDT to learn about NIS2 requirements, exposure management, and reducing cyber risk with Claroty xDome. Traditional responses and tools may not be enough to address growing cybersecurity risks in critical infrastructure sectors like energy, transport, and water … Read more