Critical Infrastructure News, Articles and Updates

Study: Infections of industrial systems common, but few are targeted

Approximately 3,000 unique industrial sites per year are randomly infected with generic malware, while attacks involving malware specifically designed to target industrial control systems are far less common, according to a study.

Energy facilities may become main target of cyber-attacks in Russia

It's estimated that power companies in Russia suffered more than 350 serious cyber-attacks in 2016, a 50 percent increase on the previous year.

Researchers tentatively link Greenbug cyberspy group to Saudi Shamoon attackers

Researchers may have found a tenuous link between a cyberespionage organization's credentials-stealing trojan and the Shamoon hacking group that's been targeting Saudi energy companies with Disttrack disk-wiping malware.

DHS designates election systems as critical infrastructure, under 'Government Facilities' category

Secretary of Homeland Security Jeh Johnson on Friday officially declared the U.S. electoral system as critical infrastructure.

New variant of KillDisk wiper threatens industrial control networks with ransomware

The KillDisk disk-wiper program that was used in conjunction with BlackEnergy malware to attack Ukrainian energy utilities now includes a ransomware component, according to researchers at CyberX.

Breach risk assessment reveals attackers' favorite techniques

A network breach risk assessment of over 20 organizations found that 100 percent showed signs of traffic tunneling, DNS-related exfiltration and malformed protocols in outbound traffic - all indicators of attackers using evasion and exfiltration techniques.

Stealing steel's secrets: Industrial conglomerate ThyssenKrupp breached by pro hackers

Professional hackers infiltrated the systems of Germany-based industrial conglomerate ThyssenKrupp earlier this year, stealing intellectual property, research and secrets.

Is your incident response team ready?

One of the best ways to test incident readiness is a tabletop exercise, a mock incident administered for senior leadership, IT, security, legal, corporate communications and business line readiness.

How BlackNurse DoS uses a single laptop to take your business down

The BlackNurse DOS attack uses ICMP messages to clog up firewalls with traffic.

Lansing, Mich., utility admits paying ransomware demand

Officials with the Lansing Board of Water & Light publicly acknowledged on Tuesday that the utility paid $25,000 to regain control of its accounting and email systems in the days following an April 25 ransomware attack.

DDoS attack could disrupt voter turnout, report

The DDoS attacks that shuttered the Dyn DNS service on Oct. 21 set a precedent that could disrupt the presidential election next week, according to a report from Imperva Incapsula.

IAEA director: cyberattack against a nuclear power plant occurred years ago

International Atomic Energy Agency's (IAEA) director Yukiya Amano said there was a successful cyberattack of a nuclear power plant two to three years ago.

IP EXPO: Kaspersky speaks on CNI and says we're living in 'scary times'

Eugene Kaspersky, CEO of Kaspersky Lab speaks at IP EXPO Europe 2016 and explains why he believes cyber-attackers are now turning their attention to critical national infrastructure.

BIND update fixes high-severity flaw affecting ICS, as CERT releases update to CSET tool

ISC released an update Tuesday for a high-severity security flaw affecting open source software that implements DNS protocols.

End-of-support devices on networks weakening cyberdefenses, report

Nearly three-quarters of businesses have end-of-support devices operating in their networks, and the consequences could prove dire, a new study found.

State officials warn Congress: don't damage public confidence in election systems

An association of state officials has published an open letter that seeks to strengthen public confidence in the electoral process, in light of research that has raised questions about the security of voting machines.

Cyber space wars may require new international regimes

While it might not include the Death Star cyber warfare among the stars is almost inevitable.

Can one CISO ever beat an army of IoT devices?

The security threat from the Internet of Things (IoT) has grown real because far too many of those sneaky IoT devices fly in under the radar. Corporate maintenance, facilities and operations departments are not accustomed to requesting IT's signoff on purchasing light bulbs or door locks. And yet, when those devices have their own independent - or dependent - communications capabilities, they are an easy backdoor for cyberthieves.

Energy sector cybersecurity workers overconfident in their capabilities

A Tripwire survey found IT staffers in the energy sector frequently don't have the data needed to see if their assumptions on how their security apparatus function are correct.

Hinkley Point C nuclear power station to go ahead with Chinese involvement despite previous concerns

Despite concerns over security from both the Prime Minister and one of her chiefs of staff, Hinkley Point C nuclear power station has been given a green light today for construction with backing from China.

Paper: Only 200K mobile bots needed to impair U.S. 911 system with DDoS attack

A few as 200,000 mobile bots would be enough to launch a successful DDoS attack against the U.S.' 911 infrastructure, significantly disrupting service nationwide, a new research paper from Ben-Gurion University reports.

Pentagon faulted for lack of cyber preparedness, GAO report

The Department of Defense does not have the necessary visibility into the cyber capabilities of the National Guard, according to a report by the GAO.

Voter databases in two states breached by foreign hackers, FBI

The FBI said foreign hackers made their way into voter databases in two states in recent weeks, the latest indication of potential problems to come in November's presidential election.

U.S. government extends offer to protect states from electoral cyberthreats

Updated! As it considers classifying the electoral system as critical infrastructure, the U.S. government has pledged to provide states with federal assistance to help manage voting cyber risks and taking additional steps to quell fears the election this fall could be hacked.

Iran investigating possible cyber angle on oil fires

Updated! Iran's Supreme National Cyberspace Council is investigating whether a recent string of oil and petrochemical fires were caused by a cyberattack.

Legacy systems within U.S. financial sector likely to blame for breaches, report

A recent SecurityScorecard study claims America's financial industry is highly susceptible to data breaches, and legacy systems may be to blame.

Feds looking to hire cyberpros

Acknowledging a shortfall in the pool of cybersecurity talent needed to combat today's increasingly sophisticated cyberattacks, the federal government announced it is actively expanding recruitment.