#critical-infrastructure

[ follow ]
#cybersecurity

U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign

Iranian cyber actors are targeting critical infrastructure in various sectors through brute-force attacks and tactics like MFA prompt bombing. Supervised defense mechanisms are essential.

Despite attacks, water security standards still a pipe dream

Multiple countries are targeting U.S. water infrastructure, highlighting significant vulnerabilities in critical systems reliant on outdated technology.

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Iran-affiliated actors developed IOCONTROL malware targeting IoT and OT environments to compromise critical infrastructure in Israel and the US.

US Sanctions Chinese Cybersecurity Firm for 2020 Ransomware Attack

U.S. sanctions target a Chinese cybersecurity firm for 2020 ransomware attacks on critical infrastructure.

Iranian hackers are going after critical infrastructure sector passwords, agencies caution

Iranian hackers are aggressively targeting various sectors to crack passwords, indicating a shift from politically motivated to more criminal activities.

Hackers race to win millions in contest to thwart cyberattacks with AI

The government is prioritizing AI to address security flaws in open-source software to protect critical infrastructure.

U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign

Iranian cyber actors are targeting critical infrastructure in various sectors through brute-force attacks and tactics like MFA prompt bombing. Supervised defense mechanisms are essential.

Despite attacks, water security standards still a pipe dream

Multiple countries are targeting U.S. water infrastructure, highlighting significant vulnerabilities in critical systems reliant on outdated technology.

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Iran-affiliated actors developed IOCONTROL malware targeting IoT and OT environments to compromise critical infrastructure in Israel and the US.

US Sanctions Chinese Cybersecurity Firm for 2020 Ransomware Attack

U.S. sanctions target a Chinese cybersecurity firm for 2020 ransomware attacks on critical infrastructure.

Iranian hackers are going after critical infrastructure sector passwords, agencies caution

Iranian hackers are aggressively targeting various sectors to crack passwords, indicating a shift from politically motivated to more criminal activities.

Hackers race to win millions in contest to thwart cyberattacks with AI

The government is prioritizing AI to address security flaws in open-source software to protect critical infrastructure.
morecybersecurity
#russia

A secretive Russian submarine unit could sabotage the subsea network of cables that powers the internet

Russia poses an increasing threat to undersea internet cables, heightening concerns among Western allies about potential sabotage.

Has Russia's Shadow Fleet, Built to Evade Sanctions, Added Sabotage to Its List?

Russia's shadow fleet poses a significant threat to Western infrastructure and security, particularly after the alleged sabotage of underwater cables.

Did a Russian shadow ship' cut the Finland-Estonia undersea Baltic cable?

Finnish authorities suspect a Russian-linked ship damaged key power and telecom cables, raising hybrid warfare concerns in Europe.

A secretive Russian submarine unit could sabotage the subsea network of cables that powers the internet

Russia poses an increasing threat to undersea internet cables, heightening concerns among Western allies about potential sabotage.

Has Russia's Shadow Fleet, Built to Evade Sanctions, Added Sabotage to Its List?

Russia's shadow fleet poses a significant threat to Western infrastructure and security, particularly after the alleged sabotage of underwater cables.

Did a Russian shadow ship' cut the Finland-Estonia undersea Baltic cable?

Finnish authorities suspect a Russian-linked ship damaged key power and telecom cables, raising hybrid warfare concerns in Europe.
morerussia
#drones

FAA bans drone use over 'critical infrastructure' sites in NYC: 'Action is purely precautionary'

FAA temporarily bans drone use over critical infrastructure in New York City as a precautionary measure amid increased drone activity reports.

Germany investigates drone flights over industrial park DW 08/22/2024

German prosecutors are investigating drone activity linked to espionage and sabotage at critical infrastructure sites.

FAA bans drone use over 'critical infrastructure' sites in NYC: 'Action is purely precautionary'

FAA temporarily bans drone use over critical infrastructure in New York City as a precautionary measure amid increased drone activity reports.

Germany investigates drone flights over industrial park DW 08/22/2024

German prosecutors are investigating drone activity linked to espionage and sabotage at critical infrastructure sites.
moredrones

Senators want DHS to detail efforts to mitigate GPS disruptions

U.S. lagging in GPS outage preparedness compared to global competitors, prompting bipartisan push for DHS to enhance infrastructure protections.

Cofactr Raises $17.2M to Help Aerospace and Defense Companies Navigate Complex Supply Chains

Cofactr streamlines the supply chain for manufacturers in critical infrastructure sectors, ensuring compliance and efficiency in sourcing parts.

DHS releases guidance for AI in critical infrastructure

The DHS has launched a framework for AI safety in critical infrastructure, emphasizing collaboration among AI developers and civil society.
#artificial-intelligence

Homeland Security Department to Release New A.I. Guidance

The U.S. Department of Homeland Security issues guidance on A.I. use in critical infrastructure, aiming to enhance safety and privacy practices.

Homeland Security Department to Release New A.I. Guidance

Critical infrastructure companies must implement strong AI governance and privacy practices according to new guidance from homeland security.

Homeland Security Department to Release New A.I. Guidance

The U.S. Department of Homeland Security issues guidance on A.I. use in critical infrastructure, aiming to enhance safety and privacy practices.

Homeland Security Department to Release New A.I. Guidance

Critical infrastructure companies must implement strong AI governance and privacy practices according to new guidance from homeland security.
moreartificial-intelligence
#white-supremacy

A white supremacist tried to bomb a power station with a drone, the FBI says

A man plotted to attack a Tennessee power substation as part of a white supremacist agenda aimed at societal disruption.

Woman Gets 18 Years for White Supremacist Plot to Shoot Power Stations

A Maryland woman was sentenced to 18 years for a plot to destroy Baltimore's electrical infrastructure, reflecting rising domestic terrorism threats.

A white supremacist tried to bomb a power station with a drone, the FBI says

A man plotted to attack a Tennessee power substation as part of a white supremacist agenda aimed at societal disruption.

Woman Gets 18 Years for White Supremacist Plot to Shoot Power Stations

A Maryland woman was sentenced to 18 years for a plot to destroy Baltimore's electrical infrastructure, reflecting rising domestic terrorism threats.
morewhite-supremacy

Software Makers Encouraged to Stop Using C/C++ by 2026

Software manufacturers are urged to transition away from memory-unsafe languages like C/C++ to mitigate risks associated with national security. Deadline for compliance is Jan. 1, 2026.

OPINION: Earthquake, Portland's energy-storage hub, could lead to massive disaster

The CEI Hub in Northwest Portland is a significant risk due to its volatile fuel storage and earthquake vulnerability.

Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks

Critical security vulnerabilities in Automatic Tank Gauge systems expose them to remote attacks, posing significant risks to critical infrastructure.
#cyber-security

UK proposes New Cyber Security and Resilience Bill to Boost the UK's Cyber Defences | Data Matters Privacy Blog

UK Government will introduce a new Cyber Security and Resilience Bill to enhance defenses against cyberattacks and safeguard critical infrastructure.

U.K. and U.S. Warn of Pro-Russia Hacktivist Attacks on Operational Technology Systems

Pro-Russia hacktivists are targeting providers of operational technology like smart water meters and dam monitoring systems in North America and Europe.

SOCI Act 2024: Insights on Critical Infrastructure

Ransomware incidents are increasing in critical infrastructure, with poor preparedness and significant human error contributing to the risks.
Organizations must adopt multi-layered security strategies to protect against ransomware and improve response plans.

British SMBs are glaringly unprotected - will the new Cyber Security and Resilience Bill be enough to raise the bar?

New UK cyber legislation aims to enhance national infrastructure resilience but may overlook smaller firms crucial to supply chains.

UK proposes New Cyber Security and Resilience Bill to Boost the UK's Cyber Defences | Data Matters Privacy Blog

UK Government will introduce a new Cyber Security and Resilience Bill to enhance defenses against cyberattacks and safeguard critical infrastructure.

U.K. and U.S. Warn of Pro-Russia Hacktivist Attacks on Operational Technology Systems

Pro-Russia hacktivists are targeting providers of operational technology like smart water meters and dam monitoring systems in North America and Europe.

SOCI Act 2024: Insights on Critical Infrastructure

Ransomware incidents are increasing in critical infrastructure, with poor preparedness and significant human error contributing to the risks.
Organizations must adopt multi-layered security strategies to protect against ransomware and improve response plans.

British SMBs are glaringly unprotected - will the new Cyber Security and Resilience Bill be enough to raise the bar?

New UK cyber legislation aims to enhance national infrastructure resilience but may overlook smaller firms crucial to supply chains.
morecyber-security
#ransomware

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

North Korea-linked APT45 expanding into financially-motivated ransomware attacks.
APT45 frequently targets critical infrastructure and has a long history of cyber operations.
Military intelligence organizations like APT45 are increasingly involved in financially-motivated cybercrime.

SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024: A Call to Action for Securing ICS/OT Environments

ICS security measures are increasingly critical due to rising cyber threats.
Organizations must recognize ICS as integral to their business operations.
The risk of high-impact, low-frequency attacks necessitates urgent cybersecurity measures.

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

North Korea-linked APT45 expanding into financially-motivated ransomware attacks.
APT45 frequently targets critical infrastructure and has a long history of cyber operations.
Military intelligence organizations like APT45 are increasingly involved in financially-motivated cybercrime.

SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024: A Call to Action for Securing ICS/OT Environments

ICS security measures are increasingly critical due to rising cyber threats.
Organizations must recognize ICS as integral to their business operations.
The risk of high-impact, low-frequency attacks necessitates urgent cybersecurity measures.
moreransomware

Add cyberattacks to the long list of Labor Day travel headaches

Cyberattacks continue to disrupt critical infrastructure, affecting airlines and airports and highlighting vulnerabilities.
The targeting of critical infrastructure by cybercriminals is increasing despite law enforcement efforts.

Continuity of Operations Central to Emergency Plans, Says Verizon Leader

Verizon prioritizes emergency preparedness for critical infrastructure services through constant monitoring and detailed response plans.

Trace Machina is building a simulation testing platform to update safety-critical applications | TechCrunch

Trace Machina is developing simulation software to prevent critical failures in autonomous systems prior to deployment.
#cybersecurity-threats

Easterly: Potential Chinese cyberattack could unfold like CrowdStrike error

The faulty CrowdStrike Falcon update provided insights into potential Chinese cyber operations on sensitive U.S. networks.

NCSC updates warning over hacktivist threat to CNI | Computer Weekly

Russia-backed hacktivist groups targeting critical infrastructure with unsophisticated attacks.
NCSC and CISA warning about evolving threats from hacktivist groups not officially backed by the Kremlin.

Easterly: Potential Chinese cyberattack could unfold like CrowdStrike error

The faulty CrowdStrike Falcon update provided insights into potential Chinese cyber operations on sensitive U.S. networks.

NCSC updates warning over hacktivist threat to CNI | Computer Weekly

Russia-backed hacktivist groups targeting critical infrastructure with unsophisticated attacks.
NCSC and CISA warning about evolving threats from hacktivist groups not officially backed by the Kremlin.
morecybersecurity-threats

As classrooms heat up due to climate change, school infrastructure needs upgrades

Rising temperatures are stressing critical infrastructure, including K-12 schools.

Banking, oil and IT industry reps call on Congress to harmonize cyber regulations ... again

Overlapping and contradictory cyber regulations are burdening critical infrastructure sectors.

UK not heeding warning over China threat, says ex-cybersecurity chief

The UK needs to pay more attention to China's cyber-espionage tactics targeting critical infrastructure.

Countries hacking infrastructure 'should be a wake-up call'

Intrusions into US water systems by China, Russia, and Iran serve as a warning about the vulnerability of critical infrastructure.
Hacktivists may have ties to government intelligence services, posing a threat to critical infrastructure security.
Nation-state intelligence services using hacktivist groups to carry out cyber attacks is a concerning trend that adds complexity to cybersecurity threats.
[ Load more ]