The agency that regulates the transmission of electricity, oil and natural gas in the United States has created a new office to concentrate on cyber security. Announced last week, the Office of Energy Infrastructure Security, part of the Federal Energy Regulatory Commission (FERC), will work in partnership with energy facilities, as well as other government agencies, to offer recommendations and provide assistance in relation to security threats and vulnerabilities. The new office arrives amid rising security concerns around smart grid technology. Several years ago, FERC approved cybersecurity standards developed by the North American Electric Reliability Corp. (NERC).
UnitedHealth Group’s CEO Andrew Witty set to testify before Congress tomorrow – security pros say there’s more to the story and it will take several more months of investigation before we know the full kill chain.
Threat actors could leverage a high-severity vulnerability impacting the R programming language, tracked as CVE-2024-27322, to enable arbitrary code execution during the deserialization of packages using the RDS format and potentially facilitate supply chain attacks, The Hacker News reports.
Major Canadian retail pharmacy chain London Drugs had all its stores across Alberta, British Columbia, Manitoba, and Saskatchewan temporarily closed down following a cybersecurity incident discovered on Sunday, reports The Register.