The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

• On July 11, 2024, CISA Releases Twenty-one Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:​​​​
  • Siemens Remote Connect Server – Used in Energy
  • Siemens RUGGEDCOM APE 1808 – Used in Energy
  • Siemens Teamcenter Visualization and JT2Go
  • Siemens Simcenter Femap
  • Siemens SCALANCE, RUGGEDCOM, SIPLUS, and SINEC
  • Siemens RUGGEDCOM – Used in Energy
  • Siemens SIMATIC and SIMIT
  • Siemens Mendix Encryption Module
  • Siemens SINEMA Remote Connect Server
  • Siemens JT Open and PLM XML SDK
  • Siemens RUGGEDCOM APE 1808
  • Siemens TIA Portal and SIMATIC STEP 7
  • Siemens TIA Portal, SIMATIC, and SIRIUS – Used in Water and Wastewater Systems, and Energy Sectors
  • Siemens SIPROTEC – Used in Energy
  • Siemens SINEMA Remote Connect Server – Used in Water and Wastewater Systems, Energy, and Food and Agriculture Sectors
  • Siemens SIMATIC WinCC
  • Siemens SIMATIC STEP 7 (TIA Portal)
  • Rockwell Automation ThinManager ThinServer
  • Rockwell Automation FactoryTalk System Services and Policy Manager
  • HMS Industrial Networks Anybus-CompactCom 30
  • Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC Series (Update D)

Additional Alerts, Updates, and Bulletins:

• CISA Releases Advisory Detailing Red Team Activity During Assessment of US FCEB Organization, Highlighting Necessity of Defense-in-Depth
• CISA and FBI Release Secure by Design Alert on Eliminating OS Command Injection Vulnerabilities
• July 9 – CISA Adds Three Known Exploited Vulnerabilities to Catalog
• Adobe Releases Security Updates for Multiple Products   
• Citrix Releases Security Updates for Multiple Products
• Microsoft Releases July 2024 Security Updates