SecurityWeek’s 2024 ICS Cybersecurity Conference Kicks Off in Atlanta

October 22, 2024 at 08:59AM The 2024 ICS Cybersecurity Conference in Atlanta features over 80 sessions and hands-on training focused on addressing critical infrastructure cyber threats. **Meeting Takeaways:** – **Event Overview**: The Premier Industrial Cybersecurity Conference will feature over 80 sessions focused on critical infrastructure cyber threats. – **Training Opportunities**: The conference includes hands-on training … Read more

Last Chance to Save: Get Your Ticket to the 2024 ICS Cybersecurity Conference

October 14, 2024 at 09:15AM The Premier Industrial Cybersecurity Conference provides over 75 sessions and hands-on training focused on addressing cyber threats to critical infrastructure. It’s the final opportunity to purchase tickets for the 2024 ICS Cybersecurity Conference, as highlighted by SecurityWeek. **Meeting Takeaways:** 1. **Event Overview**: The Premier Industrial Cybersecurity Conference will feature over … Read more

Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks

September 30, 2024 at 08:30AM Security vulnerabilities in six different Automatic Tank Gauge (ATG) systems have been disclosed, exposing them to remote attacks. Thousands of ATGs are exposed on the internet, making them a target for malicious actors. Additional flaws were found in OpenPLC, Riello NetMan 204, and AJCloud. CISA has highlighted threats to OT … Read more

Automatic Tank Gauges Used in Critical Infrastructure Plagued by Critical Vulnerabilities

September 24, 2024 at 02:24PM Cybersecurity warnings about vulnerabilities in automatic tank gauge (ATG) systems persist nearly a decade later, with critical security holes found in widely-deployed devices across various industries. Bitsight’s analysis revealed 10 vulnerabilities, with the potential for remote hacking leading to physical damage and financial theft. Despite their findings, the number of … Read more

Ransomware Attacks on Industrial Firms Surged in Q2 2024

August 15, 2024 at 11:10AM Industrial cybersecurity firm Dragos reported a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to Q1, with 29 of 86 ransomware groups active. The US and Europe were most targeted, and the manufacturing sector was a primary focus. Resurgence of certain groups and evolving tactics indicate … Read more

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating

July 23, 2024 at 06:27AM Industrial cybersecurity firm Dragos recently disclosed details on FrostyGoop, a new malware impacting industrial control systems (ICS). The malware was used in an attack in January 2024, resulting in a disruption to a municipal district energy company in Lviv, Ukraine. This incident caused a loss of heating for residents and … Read more

Cyber Workforce Numbers Rise for Larger Organizations

July 2, 2024 at 02:43PM Large organizations, especially those with more than $1 billion in revenue, increased their cyber workforce, with an average of one cyber professional per 1,086 employees in 2024. Financial companies lead the pack with one cyber expert per 267 employees, while industrial groups lag behind at one per 1,390. Cyber readiness … Read more

Critical Flaw in PTC License Server Can Allow Lateral Movement in Industrial Organizations

July 2, 2024 at 05:18AM PTC, a product lifecycle management solutions provider, released a patch for a critical vulnerability found in the license server for their Creo Elements/Direct product, affecting version 20.7.0.0 and prior. The flaw, assigned CVE-2024-6071 with a CVSS score of 10, allows unauthenticated remote attackers to execute arbitrary OS commands, potentially enabling … Read more

Millions of OpenSSH Servers Potentially Vulnerable to Remote regreSSHion Attack

July 1, 2024 at 08:21AM The SecurityWeek Network covers cybersecurity news, webcasts, and virtual events. It includes topics such as malware, cyberwarfare, data breaches, ransomware, and incident response. Additionally, it provides information on security operations, threat intelligence, risk management, and CISO strategy. Furthermore, it focuses on ICS/OT and industrial cybersecurity, as well as cyber insurance … Read more

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine

June 27, 2024 at 03:18PM SecurityWeek Network provides cybersecurity news, webcasts, virtual events, and coverage of topics such as malware, cyberwarfare, data breaches, ransomware, and more. It also includes content on security operations, incident response, risk management, and industrial cybersecurity, as well as discussions on CISO strategy and cyber insurance. It seems that the provided … Read more