Addressing Misinformation in Critical Infrastructure Security

June 17, 2024 at 01:09PM The Francis Scott Key Bridge collapse in Baltimore stirred speculation about a cyberattack, highlighting the vulnerability of physical infrastructure to cyber threats. Despite the focus on physical incidents, silent cyberattacks on critical infrastructure, like the MITRE breach, remain poorly understood. The public’s fear of cyber threats necessitates greater awareness and … Read more

Know Your Adversary: Why Tuning Intelligence-Gathering to Your Sector Pays Dividends

June 14, 2024 at 03:00AM Critical national infrastructure (CNI) is a prime target for sophisticated threat actors due to its vital role in supporting various industries. Recent reports highlight concerns over vulnerabilities, with fears of espionage from Chinese repair ships and state-sponsored cyber-attacks on CNI networks. Protecting CNI is crucial for national security, economic stability, … Read more

Rockwell’s ICS Directive Comes As Critical Infrastructure Risk Peaks

June 12, 2024 at 06:37PM With rising geopolitical tensions and cyber threats, Rockwell Automation advised customers to disconnect industrial control systems (ICS) from the internet to mitigate vulnerabilities. Cybersecurity experts warn of nation-state attacks targeting critical infrastructure, which face challenges due to online exposure and software vulnerabilities. Securing ICS assets and implementing offline measures are … Read more

How to navigate NIS2 and secure your vulnerabilities

June 7, 2024 at 11:15AM Webinar on managing cyber risk for cyber physical systems (CPS) and critical national infrastructure (CNI). Scheduled for June 10, 2024, it will cover NIS2 regulations’ impact on CPS risk management, the importance of exposure management over vulnerability management, and utilizing Claroty xDome to measure, manage, and reduce risk. Join to … Read more

Derisking your CNI

June 3, 2024 at 05:07AM Join The Reg’s Tim Phillips on 10 June 2024 at 3pm BST/10am EDT/7am PDT to learn about NIS2 requirements, exposure management, and reducing cyber risk with Claroty xDome. Traditional responses and tools may not be enough to address growing cybersecurity risks in critical infrastructure sectors like energy, transport, and water … Read more

Rockwell Automation warns admins to take ICS devices offline

May 21, 2024 at 01:50PM Rockwell Automation urges customers to disconnect industrial control systems not designed for online exposure from the Internet due to increasing malicious activity. This reduces the attack surface and limits direct access to systems vulnerable to security threats. Additionally, CISA issued an alert regarding Rockwell’s new guidance to reduce ICS device … Read more

EPA Puts Teeth Into Water Sector Cyber Efforts

May 21, 2024 at 01:36PM The EPA states that nearly 70% of US community drinking water systems fail to comply with the Safe Drinking Water Act, including cybersecurity standards. The agency has announced plans to increase enforcement, as Russia and Iran have stepped up cyberattacks. The EPA has outlined top actions for securing water systems … Read more

MITRE EMB3D Threat Model Officially Released

May 14, 2024 at 06:54AM MITRE publicly released its EMB3D threat model for embedded devices in critical infrastructure and other sectors. Developed in collaboration with industry partners, the framework aims to improve the security of these devices by mapping threats to their features and properties. It aligns with existing models and will be continuously updated … Read more

500 Victims In, Black Basta Reinvents With Novel Vishing Strategy

May 13, 2024 at 05:18PM Summary: Despite a history of targeted attacks, the Black Basta cybercriminal group has adopted a new strategy of bombarding victims with spam emails and offering fake customer support to trick them into downloading malware. Rapid7 researchers warn organizations to be vigilant and take measures to block unauthorized remote monitoring and … Read more

CISA: Black Basta ransomware breached over 500 orgs worldwide

May 13, 2024 at 10:19AM CISA and FBI reported that Black Basta ransomware affiliates breached over 500 organizations, encrypting and stealing data from critical infrastructure sectors. The gang targeted private industry and healthcare organizations in North America, Europe, and Australia. The advisory also includes tactics for defenders to mitigate ransomware risks, particularly for healthcare organizations. … Read more