WaterISAC regularly provides awareness of recent Federal reporting. While direct relevance to your utility/organization on the details of each report may vary, joint Cybersecurity Advisories (CSAs), Public Service Announcements (PSAs), and similar reporting are practical for general awareness of active threats and adversary tactics and capabilities. Members are encouraged to review each report for relevance to your organization and address accordingly.
- Joint Cybersecurity Advisory (CSA) | Social Engineering Tactics Targeting Healthcare & Public Health Entities and Providers | FBI & HHS
- Analyst comment (Jennifer Lyn Walker): While this CSA speaks to a current and direct threat to the healthcare sector, the social engineering tactics and mitigations discussed are broadly applicable and not specific to any single sector or business type. This CSA specifically speaks to the use of phishing schemes that we all see every day to steal login credentials for initial access and the diversion of automated clearinghouse (ACH) payments to U.S. controlled bank accounts.
- Public Service Announcement | Fictitious Law Firms Targeting Cryptocurrency Scam Victims Offering to Recover Funds | FBI IC3
