CISA Releases Eight Industrial Control Systems Advisories

CISA issued eight advisories about Industrial Control Systems (ICS) on April 25, 2024. The advisories share important information about security issues, vulnerabilities, and exploits related to ICS.

ICSA-24-116-01 Multiple Vulnerabilities in Hitachi Energy RTU500 Series
ICSA-24-116-02 Hitachi Energy MACH SCM
ICSA-24-116-03 Siemens RUGGEDCOM APE1808 Devices Configured with Palo Alto Networks Virtual NGFW
ICSA-24-116-04 Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC
ICSA-23-143-03 Mitsubishi Electric MELSEC Series CPU Module (Update D)
ICSA-23-157-02 Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update A)
ICSA-24-102-09 Rockwell Automation 5015-AENFTXT (Update A)
ICSA-24-067-01 Chirp Systems Chirp Access (Update B)

• Cyber Attack
• Vulnerabilities

BCSI BLOG POST
SonicWALL Vulnerability Traded; threating for Corporate network in Bangladesh

By infosecbulletin / Monday , May 20 2024

SonicWALL SSL-VPN provides secure remote access to an organization's internal network and resources through an encrypted SSL connection. This kind...

Read More

• International

Banking trojan Grandoreiro targeting about 1,500 banks over 60 countries

By infosecbulletin / Monday , May 20 2024

The banking trojan "Grandoreiro" is spreading widely through a phishing campaign in over 60 countries, aiming at customer accounts of...

Read More

• Cyber Attack
• Ransomware

Australian gov.t warns of ‘large-scale ransomware data breach’

By infosecbulletin / Saturday , May 18 2024

Australian police are investigating a big data breach in a healthcare company after a ransomware attack on Thursday. The website...

Read More

• Vulnerabilities

Patch Now: CISA Warns of Actively Exploited D-Link Router Vulnerabilities

By infosecbulletin / Saturday , May 18 2024

he U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that two security flaws in D-Link routers have been added to...

Read More

• International

New “Antidot” Banking Trojan disguised Fake Google Play Updates

By infosecbulletin / Saturday , May 18 2024

The "Antidot" Android Banking Trojan pretends to be a Google Play update app and targets Android users in different regions....

Read More

• International

CISA Published Encrypted DNS Implementation Guidance

By infosecbulletin / Saturday , May 18 2024

CISA published a guide on using Encrypted Domain Name System (DNS) for federal civilian agencies to improve cybersecurity and meet...

Read More

• Cyber Attack
• International

Cyble Research
Transparent Tribe & SideCopy: A Cyber Alliance Targeting India

By infosecbulletin / Friday , May 17 2024

Cyble Research and Intelligence Labs found that two cyber threat groups, Transparent Tribe (APT36) and SideCopy, are using advanced strategies...

Read More

• Cyber Attack

Recordedfuture report
Hackers Exploit GitHub to Spread Malware targeting operating systems

By infosecbulletin / Friday , May 17 2024

Recorded Future's Insikt Group has discovered a major cyber threat campaign carried out by Russian-speaking hackers, possibly located in the...

Read More

• Alert

ALERT
CISA issued Seventeen Industrial Control Systems Advisories

By infosecbulletin / Friday , May 17 2024

ISA issued seventeen advisories about Industrial Control Systems (ICS) on May 16, 2024. These advisories give important information about security...

Read More

• Vulnerabilities

Intel released 41 Security Advisories Over 90 Vulnerabilities

By infosecbulletin / Thursday , May 16 2024

Intel released 41 security advisories this Patch Tuesday, which contain information about over 90 vulnerabilities in their products. The company...

Read More

CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.