The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience
- Social Engineering: A Threat to Operational Technology? (Nozomi Networks)
- When it Comes to OT, if You’re Standing Still, You’re Falling Behind (Fortinet)
- Prepare For What’s Coming with the 2023 OT Cybersecurity Year in Review (Dragos)
- Metrics, Mandates, and Management: Trends & Predictions for OT Security in 2024 (Nozomi Networks)
Critical Infrastructure Incidents
- U.S. nuclear research lab data breach impacts 45,000 people (Bleeping Computer)
- Israel-linked hacking group claims attack on Iranian gas pumps (CyberScoop)
IT Vulnerabilities, Malware, Threats & Risks
- SSH vulnerability exploitable in Terrapin attacks (CVE-2023-48795) (HelpNetSecurity)
- Coverage Advisory for CVE-2023-50164: Apache Struts Path Traversal and File Upload Vulnerability (Zscaler)
- Hidden Risks of Amazon S3 Misconfigurations (Qualys)
- The hidden challenges of contractor identity management (SC Magazine)
- Protecting the enterprise from dark web password leaks (AT&T)
Ransomware
- Ransomware trends and recovery strategies companies should know (HelpNetSecurity)
- 71% of Organizations Have Fallen Victim to Ransomware, Should Your Organization Be Concerned? (Checkpoint)
- Vulnerabilities Now Top Initial Access Route For Ransomware (InfoSecurity Magazine)
General Cyber Resilience
- Enabling Threat-Informed Cybersecurity: Evolving CISA’s Approach to Cyber Threat Information Sharing (CISA)
- Secure sanitisation of storage media (UK-NCSC)
- Practitioner guidance for securing Microsoft Active Directory services in your organization - ITSP.60.100 (Canadian Centre for CyberSecurity)
- The rise of employee IP theft—and what to do about it (SC Magazine)
General Awareness & Reports
- 10 essential insights from the Microsoft Digital Defense Report 2023 (CSOOnline)
- December 2023 Cybercrime Update | Extortion Trends, Identity-Focused Attacks & Counter-Operations (SentinelOne)
- Are We Ready to Give Up on Security Awareness Training? (The Hacker News)
Technical Posts (for security analysts, sysadmins, and other nerds)
- Spamming Microsoft 365 Like It’s 1995 (Black Hills Information Security)
- PikaBot distributed via malicious search ads (Malwarebytes)
