Industrial Control Systems

ICS news


After the US, Canada bans Huawei, ZTE products from its telecommunications networks

The Canadian government has said that it intends to prohibit its telecommunications service providers from deploying Huawei and ZTE products


DNV research says with industrial systems becoming network connected, energy industry waking up to emerging cyber threats

New DNV research has revealed that the rollcall of adversaries is changing in the energy industry, as environmental groups increasingly


CISA report detects risk and vulnerability assessments plotted to MITRE ATT&CK framework

The Cybersecurity and Infrastructure Security Agency (CISA) released the latest version of its Risk and Vulnerability Assessments (RVAs) conducted in


Chinese APT espionage operation Twisted Panda targets Russia’s state-owned defense institutes

Check Point researchers reveal details of a targeted campaign that has been using sanctions-related baits to attack at least two


US GAO reports that DOD has partially implemented selected cybersecurity requirements for CUI systems

A report by the U.S. Government Accountability Office (GAO) determined that the Department of Defense (DOD) has reported implementing more


Prodaft report throws light on financially motivated Wizard Spider cybercrime group

New research has been released by the Prodaft Threat Intelligence (PTI) team on the Russia-linked Wizard Spider cybercrime group, which


CWE-CAPEC ICS/OT special interest group focuses on security weaknesses within these environments

MITRE, in partnership with the U.S. Department of Energy’s (DOE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER), announced


Hackers exploiting F5 BIG-IP devices using iControl REST authentication bypass vulnerability, advisory warns

The Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) warned on Wednesday of


BlackByte ransomware group still active globally, Cisco Talos researchers reveal

Cisco Talos researchers revealed on Wednesday that they have been monitoring the BlackByte ransomware group and its affiliates for several


New Industrial Control Systems Cybersecurity Training bill works toward bolstering nation’s cybersecurity posture

A new legislative bill has been introduced in the U.S. House of Representatives to help strengthen the nation’s cybersecurity protections


New advisory warns of hackers routinely exploiting poor security controls and practices for initial access

Global cybersecurity agencies have come together for the second time in a week to issue another joint cybersecurity advisory. This


Idaho National Laboratory’s CELR research zone delivers interactive test site for ICS, OT environments

The Industrial Control Systems (ICS) Cyber Emergency Response Team of the Cybersecurity and Infrastructure Security Agency (CISA) has expanded the


New UK ‘2022 Civil Nuclear Cyber Security Strategy’ focuses on building cybersecurity across the sector

The U.K. has rolled out a five-year roadmap of activities to manage and mitigate cyber risks in a collaborative and


Iranian threat group Cobalt Mirage has been carrying out ransomware operations in the US

Secureworks researchers are investigating attacks by the Iranian threat group, Cobalt Mirage, which has been conducting ransomware operations in the


After House passage, supply chain security training and federal cybersecurity workforce bills set to become law

The U.S. House of Representatives has passed two key pieces of legislation this week, which will help bolster the cybersecurity


Nozomi identifies Siemens building automation systems vulnerability, which can perform DoS attack against controllers

Industrial cybersecurity firm Nozomi Networks has carried out a security analysis of the Siemens PXC4.E16, a building automation system (BAS)


Claroty’s Team82 finds two vulnerabilities in XINJE PLC Program Tool, deployed across critical infrastructure sector

Researchers from Claroty’s Team82 arm uncovered two vulnerabilities in the PLC Program Tool from Chinese automation company XINJE. The tool


Xage raises top-up funding round of US$6 million, as critical infrastructure organizations focus on federal mandates

Close to the heels of its January Series B funding round, zero trust security company Xage announced Thursday that it


Global cybersecurity agencies issue guidance to secure MSPs, their customers from cyber threats

Transnational cybersecurity agencies warned organizations of recent reports that observe an increase in malicious cyber activity targeting managed service providers


Check Point finds that info-stealing malware targets German car dealerships, auto manufacturers

Researchers from Check Point Software have detected a dedicated info-stealing malware campaign, which is said to have attacked 14 German


US Department of State now condemns Russia’s destructive cyber activities against Ukraine

The U.S. Department of State said on Tuesday that is joining with allies and partners to condemn Russia’s destructive cyber


Bridewell reports UK CNI facing increasing cyber threats since beginning of the Ukraine war

Cybersecurity services firm Bridewell reported Tuesday that the U.K.’s critical national infrastructure (CNI) has been facing an increasing cyber threat


Sewer Detector Attack Responsible for COVID Lockdown

The Chinese news agency Zhōngguó Xīnwén (ZX) announced today that the recent shutdown of port facilities in Shanghai was due


US PHMSA penalizes Colonial Pipeline nearly $1 million for control room management failures

A year after DarkSide ransomware hackers breached Colonial Pipeline, the U.S. Department of Transportation’s Pipeline and Hazardous Materials Safety Administration