InfoSecBulletin Cybersecurity for mankind
CISA, the FBI, and the EPA have released a guide to help water and wastewater systems respond to incidents. Over 25 organizations from various sectors contributed to this guide, including private companies, non-profit organizations, and government entities. This collaboration ensured that the guide would be useful for water and wastewater systems.
Specifically, the guide provides information about the federal support available at each stage of the cyber incident response (IR) lifecycle and aims to enhance WWS Sector cybersecurity by:
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
CISA adds Langflow flaw to its KEV catalog
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
* Establishing clear guidance for reporting cyber incidents;
* Connecting utilities with available cybersecurity resources, services, and no-cost trainings;
* Empowering utilities to build a strong cybersecurity baseline to improve cyber resilience and cyber hygiene; and
* Encouraging utilities to integrate into their local cyber communities.
CISA, FBI, and EPA recommend that WWS Sector and critical infrastructure organizations review and include this guidance in their cyber incident response plans. For more sector tools, information, and resources, organizations can visit CISA.gov/water.
