CISA Releases Twenty Industrial Control Systems Advisories

CISA released 20 advisories about Industrial Control Systems (ICS) on June 13, 2024. These advisories give important information about security issues, vulnerabilities, and exploits related to ICS.

ICSA-24-165-01 Siemens Mendix Applications
ICSA-24-165-02 Siemens SIMATIC S7-200 SMART Devices
ICSA-24-165-03 Siemens TIA Administrator
ICSA-24-165-04 Siemens ST7 ScadaConnect
ICSA-24-165-05 Siemens SITOP UPS1600
ICSA-24-165-06 Siemens TIM 1531 IRC
ICSA-24-165-07 Siemens PowerSys
ICSA-24-165-08 Siemens Teamcenter Visualization and JT2Go
ICSA-24-165-09 Siemens SICAM AK3/BC/TM
ICSA-24-165-10 Siemens SIMATIC and SIPLUS
ICSA-24-165-11 Siemens SCALANCE XM-400, XR-500
ICSA-24-165-12 Siemens SCALANCE W700
ICSA-24-165-13 Siemens SINEC Traffic Analyzer
ICSA-24-165-14 Fuji Electric Tellus Lite V-Simulator
ICSA-24-165-16 Rockwell Automation FactoryTalk View SE
ICSA-24-165-17 Rockwell Automation FactoryTalk View SE
ICSA-24-165-18 Rockwell Automation FactoryTalk View SE
ICSA-24-165-19 Motorola Solutions Vigilant License Plate Readers
ICSA-24-074-14 Mitsubishi Electric MELSEC-Q/L Series (Update B)
ICSA-20-245-01 Mitsubishi Electric Multiple Products (Update G)

• Cyber Attack

LockBit Claims 33 TB of US Federal Reserve Data

By infosecbulletin / Monday , June 24 2024

LockBit claimed that it breached Federal Reserve Board (Federalreserve.gov), the central banking system of the United States and exfiltrated 33...

Read More

• Cyber Attack
• Data Breach

Indonesia’s National data center compromised, $8M ransom demand

By infosecbulletin / Monday , June 24 2024

Cyber attack compromised Indonesia's national data center, causing trouble with immigration checks at airports. Attacker demanded an $8 million ransom,...

Read More

• Vulnerabilities

ESET Issues Security Patch for Privilege Escalation Flaw

By infosecbulletin / Sunday , June 23 2024

ESET Issued security patch for privilege escalation flaw in its Windows security products. This flaw, called CVE-2024-2003 (CVSS 7.3), was...

Read More

• Hot Topic

Hacker offer zero-day RCE exploit of Atlassian Jira for Sale

By infosecbulletin / Saturday , June 22 2024

A threat offer to sell a zero-day exploit for Atlassian's Jira in a underground forum. This exploit can be used...

Read More

• International

US bans Kaspersky software over Russia ties

By infosecbulletin / Friday , June 21 2024

The US plans to ban the sale of Kaspersky antivirus software due to its alleged ties to the Kremlin. Gina...

Read More

• Hot Topic

China-linked spies target Asian Telcos since 2021

By infosecbulletin / Friday , June 21 2024

A group believed to be linked to China has hacked multiple telecom operators in an Asian country since 2021, according...

Read More

• National

Azad selected expert reviewer for CISA Review Manual 28th Edition

By infosecbulletin / Thursday , June 20 2024

Certified Information Systems Auditor (CISA) is a globally recognized professional certification for information systems audit, control, and security. It's offered...

Read More

• Cyber Attack

Attackers Target AWS Vaults, Buckets, and Secrets

By infosecbulletin / Thursday , June 20 2024

DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed...

Read More

• International

CISA released Guidance for Modern Approaches to Network Access Security

By infosecbulletin / Wednesday , June 19 2024

CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s...

Read More

• Alert

CISA Releases One Industrial Control Systems Advisory

By infosecbulletin / Tuesday , June 18 2024

On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security...

Read More

CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.