Critical Infrastructure | SC Media

Critical Infrastructure

DefCon: You cannot 'cyberhijack' an airplane, but you can still create mischief

Feds to boost scrutiny of airliner cybersecurity vulnerabilities

The Department of Homeland Security, Pentagon and Department of Transportation plan to bolster an established program that investigates airliner cybersecurity vulnerabilities. The Wall Street Journal is reporting the program would run tests on actual airplanes to probe for weaknesses, much like was done several years ago when an older Boeing 757 was put to the…

Power plant Russia

Second phishing campaign featuring LookBack malware targets U.S. utilities

A malicious threat actor continued to target the U.S. utilities sector with LookBack malware last August, launching a new phishing campaign that targeted organizations with emails impersonating a certification test administrator. Discovered earlier this year by researchers at Proofpoint, LookBack includes a proxy mechanism and a remote access trojan module. In July, the attackers behind…

Report: Dutch agency recruited Iranian mole to help U.S. and Israel plant Stuxnet virus

The 2007 Stuxnet virus attack perpetrated against Iran’s then-budding nuclear program was made possible after U.S. and Israeli intelligence coordinated with Dutch intelligence agency AIVD to recruit an Iranian engineer as a mole who could infect Iran’s enrichment plant near Natanz, Yahoo News reported this week. The engineer initially provided data that helped Stuxnet’s authors…

LookBack malware targeting utility sector

Three U.S. firms in the utility sector were hit with a spear phishing campaign in mid-July with the emails containing a malicious Word document that can contain and can install the new remote access trojan LookBack. The Proofpoint Threat Insight Team’s initial take is the attack was the work of a nation-state sponsored actor based…

Over 200M devices affected by critical flaws found in real-time operating system

VxWorks, a real-time operating system (RTOS) that runs on more than 2 billion devices — many in industrial, health-care and enterprise environments — has been found to contain 11 vulnerabilities, six of which are critical flaws that enable remote code execution. Around 200 million devices are running the vulnerable versions of the RTOS, according to…

Johannesburg’s power company hit by ransomware attack

The Johannesburg power company City Power was hit with a ransomware attack on July 25 which compromised its databases, applications and networks. As a result, residents of the South African economic hub were unable to purchase electricity through City Power’s prepaid vending system, leaving them without power. The issue might also impact City Power’s ability…

How securing DER smart grids differs from securing traditional energy grids, and why it matters

For an industry historically slow to change, the ongoing transformation of the power grid is remarkable. However, with this transformation comes a dramatic increase in the risks of the grid being hacked and disabled. Securing the modern “smart grid” requires new networking technology and services designed to cost-effectively secure communications to assets ranging from utility-scale…

DefCon: You cannot 'cyberhijack' an airplane, but you can still create mischief

Louisville Regional Airport Authority grounded by ransomware attack

The Louisville Regional Airport Authority (LRAA) had its wings clipped on Monday by a ransomware attack on its systems, reports say. According to local news sources, an LRAA spokesperson said the incident encrypted the municipal corporation’s localized files, did not affect operations or security systems at the two airports under its purview, Louisville Muhammad Ali…

Next post in Security News