Energy and Utilities, Firewall and Internet

DoS attack the caused disruption at US power utility exploited a known flaw

Security Affairs

SEPTEMBER 9, 2019

A DoS attack that caused disruptions at a power utility in the United States exploited a flaw in a firewall used in the facility. The incident took place earlier this year, threat actors exploited a known vulnerability in a firewall used by the affected facility to cause disruption. and 7 p.m., and 7 p.m.,

Energy and Utilities

Energy and Utilities Firewall Firmware Advertising

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

In fact, memory attacks have quietly emerged as a powerful and versatile new class of hacking technique that threat actors in the vanguard are utilizing to subvert conventional IT security systems. GLIBC keeps common code in one place, thus making it easier for multiple programs to connect to the company network and to the Internet.

Hacking

Hacking Energy and Utilities System Administration Accountability

Iranian Hackers Target U.S. Water Facility

SecureWorld News

DECEMBER 1, 2023

The utility's general manager, Robert J. The attack has been linked to CyberAv3ngers, an Iranian-backed group known for its focus on targeting Israeli water and energy sites. Disconnect the PLC from the open internet. If possible, utilize a TCP port that is different than the default port TCP 20256.

Energy and Utilities

Energy and Utilities VPN Authentication Passwords

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Security Affairs

AUGUST 27, 2024

Versa Director is a centralized management and orchestration platform used primarily by Internet Service Providers (ISPs) and Managed Service Providers (MSPs) to manage and monitor Software-Defined Wide Area Networks (SD-WANs). Exploitation requires successful authentication by a user with the necessary privileges. victims and one non-U.S.

Energy and Utilities

Energy and Utilities Firewall Technology Malware

Advisory: Malicious North Korean Cyber Activity

SecureWorld News

AUGUST 21, 2020

Here's what Blindingcan has accomplished so far: "A threat group with a nexus to North Korea targeted government contractors early this year to gather intelligence surrounding key military and energy technologies. Enable a personal firewall on agency workstations, configured to deny unsolicited connection requests.

Energy and Utilities

Energy and Utilities Passwords Antivirus Firewall

Head Mare and Twelve join forces to attack Russian entities

SecureList

MARCH 13, 2025

Additionally, Head Mare attacks utilized command-and-control (C2) servers exclusively linked to Twelve prior to these incidents. Anti-detection techniques Head Mare continued to use the Masquerading technique (T1655), naming utility executables like standard operating system files. An example download link is: hxxp://45[.]156[.]21[.]148:8443/winuac.exe

Energy and Utilities

Energy and Utilities Software Accountability Phishing

Microsoft Targets Critical Outlook Zero-Day Flaw

eSecurity Planet

MARCH 16, 2023

Block TCP 445/SMB outbound from your network by using a perimeter firewall, a local firewall, and via your VPN settings. The first, CVE-2023-23415 , is a remote code execution vulnerability in the Internet Control Message Protocol (ICMP) with a CVSS score of 9.8.

Energy and Utilities

Energy and Utilities Authentication Firewall Ransomware

Industrial Switches from different Vendors Impaired by Similar Exposures

Hacker Combat

JUNE 3, 2021

Energy and power. Thomas Weber, the researcher at SEC Consult who identified these exposures, says that the switches are utilized in various significant positions across the network. According to Weber, he only identified a few affected gadgets as being vulnerable across the internet. Heavy machinery. Automation. Surveillance.

Firmware

Firmware Energy and Utilities Cyber Attacks Surveillance

A Cybersecurity Conversation with Vince Moore – Senior Network Engineer at OPSWAT

CyberSecurity Insiders

JANUARY 16, 2022

More than 1,500 organizations worldwide spanning Financial Services, Defense, Manufacturing, Energy, Aerospace, and Transportation Systems trust OPSWAT to secure their files and devices; ensure compliance with industry and government-driven policies and regulations, and protect their reputation, finances,? networking infrastructure.

Engineering

Engineering Cybersecurity Energy and Utilities Software

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

SEPTEMBER 1, 2021

Exposing the Internet of Things (IoT) Universe. Network Functions Virtualization (NFV) is a virtualized network infrastructure where typical network functions – like firewalls , routing, and SD-WAN – can be installed as software through abstraction. NTIA and CISA: Memos from the Feds What is 5G? How is 5G Different?

Risk

Risk Cybersecurity IoT Wireless

Threats to ICS and industrial enterprises in 2022

SecureList

NOVEMBER 23, 2021

Energy, transport and utilities — in an attempt to gain a foothold in the critical infrastructure of a “potential adversary” just in case, and to use it to develop other attacks (see examples above). Known vulnerabilities in internet-facing hardware are also sure to remain a popular penetration vector.

Spyware

Spyware Phishing Cybercrime Energy and Utilities

Episode 162: Have We missed Electric Grid Cyber Attacks for Years? Also: Breaking Bad Security Habits

The Security Ledger

SEPTEMBER 25, 2019

grid happened on March 5, 2019 when an unidentified actor attacked firewalls at an undisclosed utility that was part of the power grid in California, Utah and Wyoming. That incident made news in April after the utility reported it to the U.S. Department of Energy and was called “unprecedented.”

Cyber Attacks

Cyber Attacks Energy and Utilities Cyber Risk Firewall

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

specifically states that the solution is best suited to the needs of network operators, internet service providers (ISPs), computer emergency response teams (CERTs), and domain registries. Though anyone can access this free collection of feeds and the detailed databases they produce, abuse.ch

Internet

Internet Internet Cybersecurity Malware

Best Strategies to Reduce Generative AI Risk

Centraleyes

JULY 15, 2024

The Rise of the Internet and Personal Computing The advent of the Internet and personal computers in the late 20th century transformed communication, information access, and business practices. Cybersecurity measures were developed, including firewalls, encryption, and antivirus software.

Risk

Risk Energy and Utilities Technology Government

Data Encryption Shields the Energy Sector Against Emerging Threats

Thales Cloud Protection & Licensing

JANUARY 13, 2021

Data Encryption Shields the Energy Sector Against Emerging Threats. The energy sector is part of the critical national infrastructure (CNI), and delivers services that are essential for modern life. Energy services companies are a lucrative target for adversaries. Wed, 01/13/2021 - 09:42. Cybersecurity challenges. A recent U.S.

Encryption

Encryption Energy and Utilities Firewall Marketing

Advanced threat predictions for 2025

SecureList

NOVEMBER 25, 2024

Another example seen this year was KV-Botnet , which was deployed on vulnerable firewalls, routers and IP cameras and used to conceal the malicious activities of Volt Typhoon, the actor behind it. However, one especially notable supply chain attack in 2024 was the XZ Utils backdoor, which we covered in a three-part blog post.

IoT

IoT Energy and Utilities Phishing Cryptocurrency

EPA Issues Urgent Alert for Water Utilities to Enhance Cyber Defenses

SecureWorld News

MAY 22, 2024

In a new Enforcement Alert , the agency is calling on water utilities to immediately enhance their digital defenses to protect public health and safety. Allocating funds for specific assets, such as those that are internet facing, would be an excellent way to start mitigating risks in these environments," Aiello added.

Energy and Utilities

Energy and Utilities Cyber threats Risk Cybersecurity

LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024

The Last Watchdog

DECEMBER 15, 2024

Lemon Josh Lemon , Director, Managed Detection and Response, Uptycs Attackers now exploit software vulnerabilities in rapid deployments to gain early access and persistence, while evading EDR tools and shifting to overlooked targets like firewalls and VPNs. water utility, highlights the escalating threat to critical infrastructure.

Cybersecurity

Cybersecurity Cyber threats CISO Energy and Utilities

Cyber Security Informer

DoS attack the caused disruption at US power utility exploited a known flaw

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

Trending Sources

Iranian Hackers Target U.S. Water Facility

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Advisory: Malicious North Korean Cyber Activity

Head Mare and Twelve join forces to attack Russian entities

Microsoft Targets Critical Outlook Zero-Day Flaw

Industrial Switches from different Vendors Impaired by Similar Exposures

A Cybersecurity Conversation with Vince Moore – Senior Network Engineer at OPSWAT

Cybersecurity Risks of 5G – And How to Control Them

Threats to ICS and industrial enterprises in 2022

Episode 162: Have We missed Electric Grid Cyber Attacks for Years? Also: Breaking Bad Security Habits

6 Best Threat Intelligence Feeds to Use in 2023

Best Strategies to Reduce Generative AI Risk

Data Encryption Shields the Energy Sector Against Emerging Threats

Advanced threat predictions for 2025

EPA Issues Urgent Alert for Water Utilities to Enhance Cyber Defenses

LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024

Stay Connected