Mar 23 2022

US critical infrastructure operators should prepare for retaliatory cyberattacks

Category: Cyber Attack,OT/ICS,Scada SecurityDISC @ 9:13 pm

The warning

ā€œMost of Americaā€™s critical infrastructure is owned and operated by the private sector and critical infrastructure owners and operators must accelerate efforts to lock their digital doors,ā€ he noted, and advised those that have not yet done it to harden their cyber defenses by implementingĀ security best practicesĀ delineated earlier this year.

ā€œ[This warning is] based on evolving intelligence that the Russian Government is exploring options for potential cyberattacks,ā€ heĀ added.

US Deputy National Security Advisor Anne Neuberger has followed up the warning with a press briefing, during which she stated that ā€œthere is no certainty there will be a cyber incident on critical infrastructure,ā€ but that owners and operators of critical infrastructre have the ability and the responsibility to harden the systems and networks the country relies on.

SheĀ sharedĀ that last week, federal agencies hosted classified briefings with several hundred companies in sectors they felt would be most affected, and ā€œprovided very practical, focused advice.ā€

Previously, the Cybersecurity and Infrastructure Security Agency (CISA) releasedĀ guidanceĀ to help critical infrastructure owners and operators identify and mitigate the risks of influence operations that use mis-, dis-, and malinformation (MDM) narratives.

Neuberger also said that US agencies have not yet attributed the recent attack on satellite communications companyĀ Viasat. Nevertheless, the attack has been followed by aĀ CISA alertĀ advising SATCOM network providers or customers on how to upgrade their defenses.

A trigger for important conversations

US critical infrastructure cyberattacks

Critical Infrastructure Risk Assessment: The Definitive Threat Identification and Threat Reduction Handbook

Tags: Critical infrastructure, Critical Infrastructure Risk Assessment


Dec 20 2021

Insider Threat Mitigation for U.S. Critical Infrastructure

Category: Insider ThreatDISC @ 12:27 pm

Inside Jobs: Why Insider Risk Is the Biggest Cyber Threat You Can’t Ignore

Tags: Critical infrastructure, Inside Jobs, Insider Risk, Insider Threat Report


May 17 2021

Is 85% of US Critical Infrastructure in Private Hands?

Category: OT/ICS,Scada SecurityDISC @ 9:20 am

When this problem is discussed, people regularly quote the statistic that 85% of US critical infrastructure is in private hands. Itā€™s a handy number, and matches our intuition. Still, I have never been able to find a factual basis, or anyone who knows where the number comes from. Paul Rosenzweig investigates, and reaches the same conclusion.

Public Private Partnerships (PPP): Construction, Protection, and Rehabilitation of Critical Infrastructure

Discuss objectives and legal requirements associated with PPPs, the potential advantages and limitations of PPPs, and provide guidance as to how to structure a successful PPP for infrastructure investment.

Critical Infrastructure Risk Assessment

Tags: Critical infrastructure


Jan 06 2011

The Basics of Stuxnet Worm and How it infects PLCs

Category: MalwareDISC @ 1:01 pm
Future of Mobile Malware & Cloud Computing Key...
Image by biatch0r via Flickr

Considered to be the most intricately designed piece of malware ever, Stuxnet leverages attack vectors onto industrial control systems, a territory rarely ventured into by traditional malware. Stuxnet targets industries, power plants and other facilities that use automation and control equipment from the leading German industrial vendor, Siemens. The term, critical infrastructure refers to industrial systems that are essential for the functioning and safety of our societies. Considering the profound dependence of critical infrastructure on industrial control and automation equipment, it is essential to reassess the impact this new generation of malware on the stability and security of our society.

Download WhitePaper

Has Israel Begun A Cyber War On Iran With The Stuxnet ‘Missile’?: An article from: APS Diplomat News Service

The New Face of War: How War Will Be Fought in the 21st Century




Tags: Business, Control system, Critical infrastructure, Industrial control systems, Iran, Malware, Siemens, Symantec