Nord Stream pipelines sabotaged. NSA and CISA issue guidance on ICS threats. Palestinian threat actor compromises Israeli PLCs. Lazarus Group targets the energy sector. White House issues memorandum on software supply chain security. Dragos recieves CVE numbering authority. CISA's ICS Advisories.
Control Loop OT Cybersecurity Briefing for 08.31.22
Cl0p ransomware gang attempts to extort the wrong water company. DOE invests in securing the US power grid. What the ransomware gangs want, and where they’re getting it. Industroyer2 analysis. Montenegro works to recover from Russian cyber offensive. DDoS attack against Energoatom’s website. NSTAC recommends cataloging Federal OT assets. Chemical sector cybersecurity. CISA's recent ICS vulnerability advisories.
Control Loop OT Cybersecurity Briefing for 08.03.22
More deniable DDoS attacks strike countries friendly to Ukraine. Assessing Russian intentions and capabilities against ICS in its hybrid war. Predatory Sparrow's assault on Iran's steel industry. Log4j is now considered “endemic.” Operational technology and the criminal-to-criminal market. TSA issues revised pipeline cybersecurity guidelines. MOXA issues patches for two vulnerabilities. ICS security advisories.
Smart factories are unprepared to defend against cyberattacks. CISA hosts cybersecurity exercises. US cybersecurity bill focuses on training. Slovenia conducts cybersecurity exercises for nuclear facilities.
Control Loop OT Cybersecurity Briefing for 06.08.22
The global effect of the Colonial Pipeline ransomware incident. Ethiopia alleges an "international" cyberattack against a Nile dam. New loader identified in wiper campaigns. DDoS hits Port of London Authority. Bluetooth vulnerabilities demonstrated in proof-of-concept. CISA and its partners issue guidelines for evaluating 5G implementation. Hacking back in defense of critical infrastructure.
