Russia's Sandworm APT Linked To Attack On Texas Water Plant

Ukrainian Hackers Launch Cyberattacks On Moscow Sewage System

Suspicious NuGet Package Harvesting Info From Industrial Systems

Disabling Cyberattacks Are Hitting Critical US Water Systems, White House Warns

Siemens RuggedCom Devices Impacted By 45 Fortinet Vulns

Volt Typhoon And The Disruption Of The U.S. Cyber Strategy

Zeek Security Tool Vulns Allow ICS Network Hacking

Remote Stuxnet Style Attack Possible With Web Based PLC Malware

Australian Spy Chief Fears Sabotage Of Critical Infrastructure

Southern Water Cyberattack Expected To Hit Hundreds Of Thousands Of Customers

What Is Volt Typhoon And Why Is It The Defining Threat Of Our Generation?

US Says China's Volt Typhoon Hackers Pre-Positioning For Cyberattacks Against Critical Infrastructure

Cyberattack On Irish Utility Cuts Off Water Supply For Two Days

Cyber Av3ngers Gang Hacks Industrial Controllers Across US

2 Municipal Water Facilities Report Falling To Hackers In Separate Breaches

Hackers Hijack Industrial Control System At US Water Utility

Russian Hackers Sandworm Cause Power Outage in Ukraine Amidst Missile Strikes

The notorious Russian hackers known as Sandworm targeted an electrical substation in Ukraine last year, causing a brief power outage in October 2022. The findings come from Google's Mandiant, which described the hack as a "multi-event cyber attack" leveraging a novel technique for impacting industrial control systems (ICS). "The actor first used OT-level living-off-the-land (LotL) techniques to

Malicious QR Codes Used In Phishing Attack Targeting US Energy Company

Siemens Fixes 7 Vulnerabilities In Ruggedcom Products

Industrial Control Systems Vulnerabilities Soar: Over One-Third Unpatched in 2023

About 34% of security vulnerabilities impacting industrial control systems (ICSs) that were reported in the first half of 2023 have no patch or remediation, registering a significant increase from 13% the previous year. According to data compiled by SynSaber, a total of 670 ICS product flaws were reported via the U.S. Cybersecurity and Infrastructure Security Agency (CISA) in the first half of

Chinese APTs Establish Major Beachheads Inside US Infrastructure

Ransomware Attacks On Industrial Organizations Doubled In Past Year

Rockwell Automation Exploit Spurs Fears Of Critical Infrastructure Security

Bipartisan Bill Proposes Cybersecurity Funds For Rural Water Systems

CosmicEnergy Malware Poses Plausible Threat To Electric Grids

China's Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure Undetected

A stealthy China-based group managed to establish a persistent foothold into critical infrastructure organizations in the U.S. and Guam without being detected, Microsoft and the "Five Eyes" nations said on Wednesday. The tech giant's threat intelligence team is tracking the activity, which includes post-compromise credential access and network system discovery, under the name Volt Typhoon. The

Oil And Gas Sectors Lag Behind Other Industries In Gathering Intel

APT Mint Sandstorm Quickly Exploits New PoC Hacks

Experts Warn Patching Won't Protect Critical Infrastructure Against New Age Malware

CISA Warns of Flaws in Siemens, GE Digital, and Contec Industrial Control Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published four Industrial Control Systems (ICS) advisories, calling out several security flaws affecting products from Siemens, GE Digital, and Contec. The most critical of the issues have been identified in Siemens SINEC INS that could lead to remote code execution via a path traversal flaw (CVE-2022-45092, CVSS score: 9.9)

3 New Vulnerabilities Affect OT Products from German Companies Festo and CODESYS

Researchers have disclosed details of three new security vulnerabilities affecting operational technology (OT) products from CODESYS and Festo that could lead to source code tampering and denial-of-service (DoS). The vulnerabilities, reported by Forescout Vedere Labs, are the latest in a long list of flaws collectively tracked under the name OT:ICEFALL. "These issues exemplify either an

Ransom Cartel Linked To Colonial Pipeline Attacker REvil

Critical Remote Hack Flaws Found in Dataprobe's Power Distribution Units

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday released an industrial control systems (ICS) advisory warning of seven security flaws in Dataprobe's iBoot-PDU power distribution unit product, mostly used in industrial environments and data centers. "Successful exploitation of these vulnerabilities could lead to unauthenticated remote code execution on the Dataprobe

Lazarus Group Unleashed A MagicRAT To Spy On Energy Providers

China-Linked APT40 Gang Targets Wind Farms, Australian Government

Ransomware Gang Access Water Supplier's Control System

Industrial Control System Password Cracker May Be Bad, Actually

What To Do About Inherent Security Flaws In Critical Infrastructure?

CISA Warns Over Software Flaws In Industrial Control Systems

U.S. Water Utilities Prime Cyberattack Target, Experts

Industrial IoT Ransomware Attacks Control Systems Directly