August 7, 2024 at 03:06PM An analysis by Censys revealed over 40,000 internet-exposed industrial control systems (ICS) in the US, with challenges in notifying owners. The majority are linked to building control and automation, and low-level automation protocols are mainly in wireless and consumer networks. Risks include unauthenticated manipulation and targeting by threat actors. Notifying … Read more
July 25, 2024 at 01:19PM The U.S. State Department is offering a $10 million reward for information on North Korean military hacker Rim Jong Hyok, linked to Andariel hacking group. Hyok faces charges of computer hacking and money laundering and is tied to ransomware attacks on U.S. healthcare and defense organizations. This group is an … Read more
June 21, 2024 at 04:36PM CISO Corner: Dark Reading offers articles to support cybersecurity strategies. France bids to acquire Atos to protect key technologies for defense interests. China’s offensive cybersecurity programs benefit from vulnerability research. NIST CSF 2.0 provides a roadmap for security initiatives. Threats to outer-space assets must be considered. Misinformation complicates understanding of … Read more
March 20, 2024 at 08:57AM Government agencies in the US, UK, Canada, Australia, and New Zealand are warning critical infrastructure entities of the threat posed by Chinese state-sponsored group, Volt Typhoon. Following a February advisory, the agencies are offering guidance on defending against the group’s advanced persistent threat (APT) activities, emphasizing cybersecurity, supply chain security, … Read more
December 8, 2023 at 04:49AM US infrastructure may be compromised by Iran-linked attackers targeting PLCs, warns a coalition of US and Israeli agencies. The CyberAv3ngers group, believed to be connected to Iran’s IRGC, attacked a Pennsylvania water authority and may have accessed multiple facilities since November 22, exploiting poorly secured internet-connected devices. Meeting Takeaways: 1. … Read more
December 6, 2023 at 06:18AM Forescout discovered 21 vulnerabilities in Sierra Wireless routers, potentially exposing critical infrastructure to remote attacks. Clear Takeaways from Meeting: – Forescout has identified a total of 21 vulnerabilities in Sierra Wireless OT/IoT routers. – These vulnerabilities have the potential to expose critical infrastructure organizations to remote cyber attacks. – The … Read more
December 4, 2023 at 01:05PM Iran-linked CyberAv3ngers hacked US infrastructure, compromising logic controllers in multiple states. The FBI-led interagency alert followed a Pennsylvania water authority breach, indicating potential control disruptions in critical utilities. The attackers exploited weak security, with a 10-day undetected access, prompting urgent system evaluations. Meeting Takeaways: 1. **Attack on U.S. Infrastructure by … Read more
November 29, 2023 at 01:13PM CISA alerts of a cyber intrusion at a U.S. water facility via internet-exposed Unitronics PLCs, without harming drinking water. The agency advises replacing default passwords, using MFA, disconnecting PLCs from the internet, using firewalls, backing up systems, changing ports, and updating firmware to bolster security. Key Takeaways from Meeting Notes: … Read more