The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Incidents & Threats

• West Virginia city latest municipality hit with cyberattack (The Record)
• Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months (Bleeping Computer)

Critical Infrastructure Resilience

• Age-old problems to sharing cyber threat info remain, IG report finds (Cyberscoop)
• Enhance Efficiency & Boost Productivity by Integrating Cybersecurity and Operations (Dragos)
• Rising significance of OT asset visibility in cybersecurity resilience across critical infrastructure (Industrial Cyber)
• US, Israel Used Dutch Spy to Launch Stuxnet Malware Against Iran (Dark Reading)
• Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition Unresolved (Security Week)
• Energy Department Offering $70 Million for Security, Resilience Research (Security Week)

IT Vulnerabilities

• Enterprises with Kyocera printers open to path traversal attacks (CSO Online)
• QNAP Patches High-Severity Flaws in QTS, Video Station, QuMagie, Netatalk Products (Security Week)
• January 2024 Patch Tuesday forecast: A Focus on Printing (Help Net Security)

IT Malware & Threats

• Google: Malware abusing API is standard token theft, not an API issue (Bleeping Computer)
• December 2023’s Most Wanted Malware: The Resurgence of Qbot and FakeUpdates (Check Point)
• Meet Ika & Sal: The Bulletproof Hosting Duo from Hell (Krebs on Security)

Ransomware

• New Decryption Key Available for Babuk Tortilla Ransomware Victims (Infosecurity Magazine)
• 'Swatting' Becomes Latest Extortion Tactic in Ransomware Attacks (Dark Reading)

Cyber Resilience

• February 1, 2024: A Date All Email Senders Should Care About (CISCO)
• Stronger together: Creating a cyber-secure community (CSO Online)
• Exposed Secrets are Everywhere. Here's How to Tackle Them (The Hacker News)
• Protecting Windows networks: Get back to basics for the new year (CSO Online)
• Why Public Links Expose Your SaaS Attack Surface (The Hacker News)
• NIST AI 100-2 E2023 | Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations (NIST)

Technical Posts (for network defenders, security analysts, sysadmins, and other nerds)

• Details of a new, novel advanced malware attack using Microsoft Office (Forcepoint)
• What is that User Agent? (Internet Storm Center)
• Netstat, but Better and in PowerShell (Internet Storm Center)