The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:
ICS Advisories:
- On September 17, 2024, CISA Releases Three Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
- ICSA-24-261-01 Siemens SIMATIC S7-200 SMART Devices
- ICSA-24-261-02 Millbeck Communications Proroute H685t-w – Used in Energy
- ICSA-24-261-03 Yokogawa Dual-redundant Platform for Computer (PC2CKM) – Used in Energy
Additional Alerts, Updates, and Bulletins:
- CISA Adds Four Known Exploited Vulnerabilities to Catalog
- 09/16/2024: CISA Adds Two Known Exploited Vulnerabilities to Catalog
- 09/13/2024: CISA Adds One Known Exploited Vulnerability to Catalog
- CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities
- New CISA Plan Aligns Federal Agencies in Cyber Defense
- CISA Releases Analysis of FY23 Risk and Vulnerability Assessments
- Ivanti Releases Security Update for Cloud Services Appliance
