The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure
- Dragos CEO: Digitization in critical infrastructure will spur attacks | Cyberscoop
- So You Want to Achieve NERC CIP-013-1 Compliance... | Tripwire
- Canadian city says timeline for recovery from ransomware attack ‘unknown’ | The Record
- Southern Company Builds SBOM for Electric Power Substation | Dark Reading
- Cyber Insights 2024: OT, ICS and IIoT | SecurityWeek
- US DoD launches CORA program to revolutionize cybersecurity strategy | Industrial Cyber
IT Malware
Ransomware
- ALPHV ransomware gang fakes own death, fools no one | Malwarebytes Labs
- Anatomy of a BlackCat Attack Through the Eyes of Incident Response | SecurityWeek
- LockBit 3.0’s Bungled Comeback Highlights the Undying Risk of Torrent-Based (P2P) Data Leakage | Security Affairs
- Alert: GhostSec and Stormous Launch Joint Ransomware Attacks in Over 15 Countries | The Hacker News
Cyber Resilience & General Awareness
- Why Your Firewall Will Kill You | SANS Technology Institute
- Passwords are Costing Your Organization Money - How to Minimize Those Costs | Bleeping Computer
- IAM vs PAM: What’s the Difference And Why It Matters | Heimdal
- Cyber Insights 2024: A Dire Year for CISOs? | SecurityWeek
- Watching the bottom line—How a Zero Trust position can save time and money | CSO
- CISO Sixth Sense: NIST CSF 2.0's Govern Function | Dark Reading
- The Challenges of AI Security Begin With Defining It | Dark Reading