Mitsubishi advises isolation as mitigation
11 August 2021by News desk
Countermeasures per some of the latest Misubishi vulnerability bulletins include ensuring isolation / firewalling whilst fixes are being developed.
Exposed Healthcare Transport Tubing
3 August 2021by News desk
Transport Tubing used in more than 3000 hospitals to deliver medicines and blood samples exposed due to hard-coded passwords, unencrypted connections and unauthenticated firmware updates.
CISA ICS Ransomware Factsheet
14 June 2021by News desk
US CISA issues ICS ransomware factsheet. Recommendations include:
Prepare:
- ID critical processes & equipment
- Develop and test response plan
- Ensure adequate backups in place
Mitigate:
- Practice cyber hygiene (patching, whitelisting, user management, MFA etc)
- Network segmentation
- Vigilent network monitoring
Respond:
- Isolate impacted systems
- Power down where isolation is not possible
- Triage and restore impacted systems
- Obtain specialist third party assistance
- Take a forensic image
- Obtain decryptors via legal routes
Utility providers affected by a ransomware attack
13 February 2021by News desk
Posted on 13 February, 2021 by Editor
Two major Brazilian utility providers operations were affected by ransomware attack.
The Sensors That Power Smart Cities are a Hacker’s Dream
21 August 2018by News desk
Smart city sensor hubs are riddled with vulnerabilities:
The Sensors That Power Smart Cities Are a Hacker’s Dream
Cryptocurrency Malware Mining Attack on ICS systems
12 February 2018by News desk
Water Utility in Europe Hit by Cryptocurrency Malware Mining Attack http://www.eweek.com/security/water-utility-in-europe-hit-by-cryptocurrency-malware-mining-attack
Energy company plant engineers actively targeted
8 July 2017by News desk
The FBI-DHS has issued an “amber” alert warning that energy companies have been actively targeted since May. (access the blog entry for the link)
POC rootkit targets PLC’s
29 November 2016by News desk
POC rootkit reduces observability on PLC’s (access the blog entry for the link)
Irongate reduces visibility with MitM tricks
9 November 2016by News desk
Irongate ICS malware masks malicious activity on SCADA systems (access the blog enrty for the link)
‘Operation Ghoul’ Targets Industrial, Engineering Companies
22 August 2016by News desk
Targeted attacks against small and midsized engineering and industrial sector businesses motivated by financial gain. (access the blog entry for the link)