InfoSecBulletin Cybersecurity for mankind
CISA, the FBI, and the EPA have released a guide to help water and wastewater systems respond to incidents. Over 25 organizations from various sectors contributed to this guide, including private companies, non-profit organizations, and government entities. This collaboration ensured that the guide would be useful for water and wastewater systems.
Specifically, the guide provides information about the federal support available at each stage of the cyber incident response (IR) lifecycle and aims to enhance WWS Sector cybersecurity by:
16,000+ Fortinet devices compromised with symlink backdoor, Mostly in Asia
Patch now! Critical Erlang/OTP SSH Vuln Allows UCE
CISA warns of increasing risk tied to Oracle legacy Cloud leak
CVE-2025-20236
Cisco Patches Unauthenticated RCE Flaw in Webex App
Apple released emergency security updates for 2 zero-day vulns
Oracle Released Patched for 378 flaws for April 2025
CVE-2025-24054
Hackers Exploiting NTLM Spoofing Windows Vuln the in Wild
Bengaluru firm got ransomware attack, Hacker demanded $70,000
MITRE warns: U.S. Govt. Funding for MITRE’s CVE Ends Today
PwC exits more than a dozen countries in push to avoid scandals: FT reports
* Establishing clear guidance for reporting cyber incidents;
* Connecting utilities with available cybersecurity resources, services, and no-cost trainings;
* Empowering utilities to build a strong cybersecurity baseline to improve cyber resilience and cyber hygiene; and
* Encouraging utilities to integrate into their local cyber communities.
CISA, FBI, and EPA recommend that WWS Sector and critical infrastructure organizations review and include this guidance in their cyber incident response plans. For more sector tools, information, and resources, organizations can visit CISA.gov/water.
