Critical Infrastructure | SC Media

Critical Infrastructure

LookBack malware targeting utility sector

Three U.S. firms in the utility sector were hit with a spear phishing campaign in mid-July with the emails containing a malicious Word document that can contain and can install the new remote access trojan LookBack. The Proofpoint Threat Insight Team’s initial take is the attack was the work of a nation-state sponsored actor based…

Over 200M devices affected by critical flaws found in real-time operating system

VxWorks, a real-time operating system (RTOS) that runs on more than 2 billion devices — many in industrial, health-care and enterprise environments — has been found to contain 11 vulnerabilities, six of which are critical flaws that enable remote code execution. Around 200 million devices are running the vulnerable versions of the RTOS, according to…

Johannesburg’s power company hit by ransomware attack

The Johannesburg power company City Power was hit with a ransomware attack on July 25 which compromised its databases, applications and networks. As a result, residents of the South African economic hub were unable to purchase electricity through City Power’s prepaid vending system, leaving them without power. The issue might also impact City Power’s ability…

How securing DER smart grids differs from securing traditional energy grids, and why it matters

For an industry historically slow to change, the ongoing transformation of the power grid is remarkable. However, with this transformation comes a dramatic increase in the risks of the grid being hacked and disabled. Securing the modern “smart grid” requires new networking technology and services designed to cost-effectively secure communications to assets ranging from utility-scale…

DefCon: You cannot 'cyberhijack' an airplane, but you can still create mischief

Louisville Regional Airport Authority grounded by ransomware attack

The Louisville Regional Airport Authority (LRAA) had its wings clipped on Monday by a ransomware attack on its systems, reports say. According to local news sources, an LRAA spokesperson said the incident encrypted the municipal corporation’s localized files, did not affect operations or security systems at the two airports under its purview, Louisville Muhammad Ali…

DHS lists critical infrastructure areas to protect from cyberattack

The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) today issued a list of the 55 areas of the nation’s critical infrastructure that it believes must be protected from cyberattacks. The National Critical Functions list was created by CISA’s National Risk Management Center and contains functions used or supported by the government and…

Ransomware disables Cleveland airport’s email systems, information screens

A ransomware attack reportedly has affected email, payroll and record-keeping systems at Cleveland Hopkins International Airport this week and also darkened the transportation facility’s information screens And according to a report from local news outlet WKYC, the attackers may have also accessed airport employee payroll records containing personal information. An April 22 press release issued…

'Havex' malware strikes industrial sector via watering hole attacks

Second Triton/Trisis critical infrastructure attack spotted

A second attack against a critical infrastructure target has been launched using the Triton/Trisis custom attack framework. FireEye researchers were able to attribute a second attack to the Russian group it fingered as being behind the initial 2017 attack that hit a petrochemical plant in Saudi Arabia through its industrial control system. Although details such…

Iranian hackers targeting critical infrastructure

Dragos acquires NexDefense to bolster ICS defense capability

Dragos has acquired the industrial control system (ICS) visibility technology firm NexDefense and has announced the availability of a suite of tools for companies to assess their ICS security. No financial or organizational details on the deal were released. “This is a mainly a technology acquisition, however a majority of the engineering team is joining…

Next post in Company News