Industrial Control Systems

ICS news


Cloud Server Farm Taken Offline by Drone Attack

Eniac Cloud confirmed that yesterday’s interruption in their cloud service was due to a remotely piloted aircraft being flown into


Cisco Talos detects malicious campaigns using government, union-themed lures offering Cobalt Strike beacons

Researchers at Cisco Talos discovered a malicious campaign last month delivering Cobalt Strike beacons that could be used… The post


Homeland Security Committee advances bipartisan legislation that works on bolstering security of open source software

The U.S. Senate Homeland Security and Governmental Affairs Committee advanced on Wednesday bipartisan legislation that works to protect… The post


The secrets of Schneider Electric’s UMAS protocol

The UMAS protocol, in its implementation prior to the version in which the CVE-2021-22779 vulnerability was fixed, had significant shortcomings


GAO determines Coast Guard cyberspace workforce planning actions must address growing mission demands

A U.S. Government Accountability Office (GAO) report has been released that addresses the extent the U.S. Coast Guard… The post


Russia said to be preparing mass cyberattacks on critical infrastructure facilities in Ukraine

The Ukrainian government said that the Kremlin is planning to carry out massive cyberattacks on the critical infrastructure… The post


GAO detects IT-OT cybersecurity loopholes at NNSA, seeks full implementation of foundational cybersecurity risk practices

The U.S. Government Accountability Office (GAO) said that it found that the National Nuclear Security Administration (NNSA) and… The post


Dragos outlines threat perspective of cyber threat activities targeting water and wastewater systems in GCC region

Industrial cybersecurity company Dragos assesses that the impact of cyberattacks against water and wastewater systems (WWS) in Gulf… The post


FERC puts forward incentives for voluntary cybersecurity investments, participates in threat information sharing programs

The Federal Energy Regulatory Commission (FERC) issued a Notice of Proposed Rulemaking (NOPR) to establish rules providing incentive-based… The post


Metador APT hackers target telecommunications, ISPs, universities across the Middle East, Africa

SentinelLabs researchers provided details of an advanced threat actor called Metador that primarily targets telecommunications, internet service providers,… The post


CISA, NSA reveal that OT/ICS owners, operators cannot prevent malicious hacker attacks, but must work on mitigation actions

U.S. cybersecurity agencies published a joint cybersecurity advisory on Thursday covering control system defense for operational technology (OT)… The post


Cyberspace Solarium Commission publishes progress report, identifies areas for future action

The Cyberspace Solarium Commission released Wednesday its progress report on the collective changes carried out to help deter… The post


EU Cybersecurity Skills Framework works towards commonalities of roles, competencies, skills, knowledge

The EU Agency for Cybersecurity (ENISA) released Wednesday details of a European Cybersecurity Skills Framework (ECSF) to create… The post


US agencies warn of malicious cyber operations executed by Iranian state hackers against Albanian government

Iranian state hackers have executed malicious cyber operations against the Government of Albania in July and September, U.S…. The post


Seven vulnerabilities in Dataprobe iBoot-PDU can bypass NAT, firewall to shut down electric devices, Team82 reveals

Claroty’s research arm, Team82 uncovered and disclosed seven vulnerabilities in Dataprobe’s iBoot-PDU (power distribution units). Some of the… The post


HC3 warns of Monkeypox-themed phishing campaign targeting healthcare providers

The U.S. Department of Health & Human Services’ Health Sector Cybersecurity Coordination Center (HC3) has warned of a… The post


FCC adds Pacific Network, China Unicom equipment and services to national security threat list

The Public Safety and Homeland Security Bureau at the Federal Communications Commission (FCC) added on Tuesday equipment and… The post


Recorded Future details Russia APT group UAC-0113 emulating telecommunication providers across Ukraine

Recorded Future released a Monday report that profiles the unique infrastructure used by the threat hacker group UAC-0113,… The post


Ransomware Task Force focuses on improving protection against ransomware intrusions, disrupting hackers

The U.S. Cybersecurity and Infrastructure Agency (CISA) and the Federal Bureau of Investigation (FBI) co-chaired an initial meeting… The post


House bill now directs CISA, HHS to improve cybersecurity across healthcare, public health entities

Crucial legislation has been brought into the U.S. House of Representatives to improve cybersecurity across the healthcare and… The post


DOE calls for 2023 OT Defender Fellowship applications, bolsters energy sector cybersecurity

The U.S. Department of Energy (DOE) announced that it is accepting applications for the next cohort of its… The post


Homeland Security Committee conducts hearing, examines federal efforts on building ICS security against cyberattacks

The Subcommittee on Cybersecurity, Infrastructure Protection & Innovation held a hearing this week to examine federal efforts to… The post


CISA’s Cybersecurity Advisory Committee meets, now set to build resilience and reduce systemic risk

The Cybersecurity and Infrastructure Security Agency (CISA) held this week its fourth Cybersecurity Advisory Committee meeting, with members… The post


OMB memorandum works on enhancing security of software supply chain while complying with NIST guidance

The Office of Management and Budget (OMB) published Wednesday a memorandum that focuses on enhancing the security of… The post