In terms of malware, Emotet has been among the greatest threats to water and wastewater utilities in recent months, infecting systems and deploying other types of malware. In one well-document example, in October 2018 Emotet dropped the Ryuk ransomware into the IT system for a North Carolina water utility (WaterISAC created a page on its portal and hosted presentations during webcasts in October and November about this incident). Part of what makes Emotet so threatening, and so dangerous, is that it is perpetually morphing, making it difficult to detect until long after it has infected a system. But like other forms of malware, Emotet relies on a human to make initial entry into a system, making basic measures like using more complex passwords and educating employees on how to spot phishing campaigns extremely important. Read the article at SentinelOne.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!