InfoSecBulletin Cybersecurity for mankind
CISA, the FBI, and the EPA have released a guide to help water and wastewater systems respond to incidents. Over 25 organizations from various sectors contributed to this guide, including private companies, non-profit organizations, and government entities. This collaboration ensured that the guide would be useful for water and wastewater systems.
Specifically, the guide provides information about the federal support available at each stage of the cyber incident response (IR) lifecycle and aims to enhance WWS Sector cybersecurity by:
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
Canada 2nd largest airlines “WestJet” investigates cyberattack disrupting internal systems
Paraguay 7.4 Million Citizen Records Leaked on Dark Web
High-Severity Flaw in HashiCorp Nomad Allows Privilege Escalation
SoftBank: Over 137,000 personal info leaked
Alert
Trend Micro Apex One Flaw Allow Attackers to Inject Malicious Code
* Establishing clear guidance for reporting cyber incidents;
* Connecting utilities with available cybersecurity resources, services, and no-cost trainings;
* Empowering utilities to build a strong cybersecurity baseline to improve cyber resilience and cyber hygiene; and
* Encouraging utilities to integrate into their local cyber communities.
CISA, FBI, and EPA recommend that WWS Sector and critical infrastructure organizations review and include this guidance in their cyber incident response plans. For more sector tools, information, and resources, organizations can visit CISA.gov/water.
