Education, Energy and Utilities and Information Security

CISA JCDC Will Focus on Energy Sector

Security Affairs

APRIL 5, 2023

JCDC will map systemic risk and response by accounting for the following: Understanding inherent risks posed by open-source software used for industrial controls Reduce supply chain risk in critical infrastructure by employing remote monitoring, managed service, and managed security providers.

Energy and Utilities

Energy and Utilities Risk Cybersecurity Compliance

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” APT28 had utilized compromised Ubiquiti EdgeRouters as a command-and-control infrastructure for MASEPIE backdoors. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. The group rapidly weaponized N-day vulnerabilities in popular enterprise applications by using publicly disclosed POCs.

Energy and Utilities

Energy and Utilities Military Education Phishing

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

Energy utilities and oil and gas, but also water utilities and transportation systems, are privileged targets of nation-state actors. ” concludes the report.

Energy and Utilities

Energy and Utilities Education Ransomware IT

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

Department of Justice indictment, MSS-affiliated actors have targeted various industries across the United States and other countries—including high-tech manufacturing; medical device, civil, and industrial engineering; business, educational, and gaming software; solar energy; pharmaceuticals; and defense—in a campaign that lasted over ten years.[

Government

Government Energy and Utilities Healthcare Access

DOE Releases Report on Consumer Privacy Issues Related to Smart Grid Technologies

Hunton Privacy

OCTOBER 12, 2010

On October 5, 2010, the Department of Energy (“DOE”) released a report entitled “Data Access and Privacy Issues Related to Smart Grid Technologies.” The idea behind the Smart Grid is that electricity can be delivered more efficiently using data collected through monitoring consumers’ energy use.

Energy and Utilities

Energy and Utilities Privacy Communications Data collection

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

Hunton Privacy

JULY 11, 2017

According to the Draft Regulations, this may include network facilities and information systems operated and managed by (1) government agencies and entities in the energy, finance, transportation, water conservation, health care, education, social insurance, environmental protection and public utilities sectors; (2) information networks, such as telecommunications (..)

Energy and Utilities

Energy and Utilities Security Cybersecurity Manufacturing

Updates on Federal Cybersecurity Legislation

Hunton Privacy

SEPTEMBER 10, 2010

This bill would amend the Federal Power Act to grant the Federal Energy Regulatory Commission (“FERC”) authority to issue emergency orders requiring critical infrastructure facility operators to take actions necessary to protect the bulk power system. The American Clean Energy Leadership Act.

Energy and Utilities

Energy and Utilities Cybersecurity Security awareness Education

Operators behind Dark Caracal are still alive and operational

Security Affairs

NOVEMBER 29, 2020

” During the last campaign, the hackers targeted multiple sectors including Government, financial, energy, food industry, healthcare, education, IT, and legal institutions. Samples from the Dark Caracal campaign (2017) utilized around 100 commands, compared to the current 120 command version we analyzed.

Energy and Utilities

Energy and Utilities Government Archiving Education

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. And again, smart meters were positioned squarely as making the environment more friendly by knowing how and when energy is being used by individual customers. Environmental effects caused by pollution.

Energy and Utilities

Energy and Utilities Computer and Electronics IT Communications

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences.

Energy and Utilities

Energy and Utilities Manufacturing Risk IT

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

Its apparent goal is espionage directed against the financial and energy sectors. Department of Education warned that there had been active and ongoing exploitation of the Ellucian Banner system. The Department of Education says the phony accounts are almost immediately being put to unspecified criminal use.

Cloud

Cloud Energy and Utilities Security Access

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

Its apparent goal is espionage directed against the financial and energy sectors. Department of Education warned that there had been active and ongoing exploitation of the Ellucian Banner system. The Department of Education says the phony accounts are almost immediately being put to unspecified criminal use.

Cloud

Cloud Energy and Utilities Security Access

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

Its apparent goal is espionage directed against the financial and energy sectors. Department of Education warned that there had been active and ongoing exploitation of the Ellucian Banner system. The Department of Education says the phony accounts are almost immediately being put to unspecified criminal use.

Cloud

Cloud Energy and Utilities Security Access

Information Management Today

CISA JCDC Will Focus on Energy Sector

Operation Cronos: law enforcement disrupted the LockBit operation

Webinars

Trending Sources

FBI chief says China is preparing to attack US critical infrastructure

Webinars

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

More details about Operation Cronos that disrupted Lockbit operation

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

DOE Releases Report on Consumer Privacy Issues Related to Smart Grid Technologies

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

Updates on Federal Cybersecurity Legislation

Operators behind Dark Caracal are still alive and operational

The Hacker Mind Podcast: Reverse Engineering Smart Meters

The Hacker Mind Podcast: Hacking Industrial Control Systems

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Stay Connected