Eniac Cloud confirmed that yesterday’s interruption in their cloud service was due to a remotely piloted aircraft being flown into
Industrial Control Systems
ICS news
Cisco Talos detects malicious campaigns using government, union-themed lures offering Cobalt Strike beacons
Researchers at Cisco Talos discovered a malicious campaign last month delivering Cobalt Strike beacons that could be used… The post
Homeland Security Committee advances bipartisan legislation that works on bolstering security of open source software
The U.S. Senate Homeland Security and Governmental Affairs Committee advanced on Wednesday bipartisan legislation that works to protect… The post
The secrets of Schneider Electric’s UMAS protocol
The UMAS protocol, in its implementation prior to the version in which the CVE-2021-22779 vulnerability was fixed, had significant shortcomings
Latest
NetSuite pitches automation, eyes high-growth markets in APAC expansion
Oracle-owned cloud software vendor is looking to expand its operations in markets such as Indonesia and the Philippines, through a
GAO determines Coast Guard cyberspace workforce planning actions must address growing mission demands
A U.S. Government Accountability Office (GAO) report has been released that addresses the extent the U.S. Coast Guard… The post
Russia said to be preparing mass cyberattacks on critical infrastructure facilities in Ukraine
The Ukrainian government said that the Kremlin is planning to carry out massive cyberattacks on the critical infrastructure… The post
GAO detects IT-OT cybersecurity loopholes at NNSA, seeks full implementation of foundational cybersecurity risk practices
The U.S. Government Accountability Office (GAO) said that it found that the National Nuclear Security Administration (NNSA) and… The post
Dragos outlines threat perspective of cyber threat activities targeting water and wastewater systems in GCC region
Industrial cybersecurity company Dragos assesses that the impact of cyberattacks against water and wastewater systems (WWS) in Gulf… The post
FERC puts forward incentives for voluntary cybersecurity investments, participates in threat information sharing programs
The Federal Energy Regulatory Commission (FERC) issued a Notice of Proposed Rulemaking (NOPR) to establish rules providing incentive-based… The post
Metador APT hackers target telecommunications, ISPs, universities across the Middle East, Africa
SentinelLabs researchers provided details of an advanced threat actor called Metador that primarily targets telecommunications, internet service providers,… The post
CISA, NSA reveal that OT/ICS owners, operators cannot prevent malicious hacker attacks, but must work on mitigation actions
U.S. cybersecurity agencies published a joint cybersecurity advisory on Thursday covering control system defense for operational technology (OT)… The post
Cyberspace Solarium Commission publishes progress report, identifies areas for future action
The Cyberspace Solarium Commission released Wednesday its progress report on the collective changes carried out to help deter… The post
EU Cybersecurity Skills Framework works towards commonalities of roles, competencies, skills, knowledge
The EU Agency for Cybersecurity (ENISA) released Wednesday details of a European Cybersecurity Skills Framework (ECSF) to create… The post
US agencies warn of malicious cyber operations executed by Iranian state hackers against Albanian government
Iranian state hackers have executed malicious cyber operations against the Government of Albania in July and September, U.S…. The post
Seven vulnerabilities in Dataprobe iBoot-PDU can bypass NAT, firewall to shut down electric devices, Team82 reveals
Claroty’s research arm, Team82 uncovered and disclosed seven vulnerabilities in Dataprobe’s iBoot-PDU (power distribution units). Some of the… The post
HC3 warns of Monkeypox-themed phishing campaign targeting healthcare providers
The U.S. Department of Health & Human Services’ Health Sector Cybersecurity Coordination Center (HC3) has warned of a… The post
FCC adds Pacific Network, China Unicom equipment and services to national security threat list
The Public Safety and Homeland Security Bureau at the Federal Communications Commission (FCC) added on Tuesday equipment and… The post
Recorded Future details Russia APT group UAC-0113 emulating telecommunication providers across Ukraine
Recorded Future released a Monday report that profiles the unique infrastructure used by the threat hacker group UAC-0113,… The post
Ransomware Task Force focuses on improving protection against ransomware intrusions, disrupting hackers
The U.S. Cybersecurity and Infrastructure Agency (CISA) and the Federal Bureau of Investigation (FBI) co-chaired an initial meeting… The post
House bill now directs CISA, HHS to improve cybersecurity across healthcare, public health entities
Crucial legislation has been brought into the U.S. House of Representatives to improve cybersecurity across the healthcare and… The post
DOE calls for 2023 OT Defender Fellowship applications, bolsters energy sector cybersecurity
The U.S. Department of Energy (DOE) announced that it is accepting applications for the next cohort of its… The post
Homeland Security Committee conducts hearing, examines federal efforts on building ICS security against cyberattacks
The Subcommittee on Cybersecurity, Infrastructure Protection & Innovation held a hearing this week to examine federal efforts to… The post
CISA’s Cybersecurity Advisory Committee meets, now set to build resilience and reduce systemic risk
The Cybersecurity and Infrastructure Security Agency (CISA) held this week its fourth Cybersecurity Advisory Committee meeting, with members… The post
OMB memorandum works on enhancing security of software supply chain while complying with NIST guidance
The Office of Management and Budget (OMB) published Wednesday a memorandum that focuses on enhancing the security of… The post