HackDig : Dig high-quality web security articles

Navigating Cybersecurity with NERC CIP as the North Star

Working in the Electric Utility sector of critical infrastructure gives a person a very unique perspective on how many of the pieces of the puzzle fit together to provide uninterrupted services to a broad population. My personal experience as a software engineer in the electrical industry introduced me to the nuances that the average person doesn’t consider
Publish At:2022-06-10 02:13 | Read:227 | Comments:0 | Tags:Featured Articles ICS Security NERC CIP Critical Infrastruct

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 2, 2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 2, 2022. I’ve also included some comments on these stories.Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other C
Publish At:2022-05-09 10:00 | Read:545 | Comments:0 | Tags:Featured Articles VERT News Azure Bug Critical Infrastructur

US, Australia, Canada, New Zealand, and the UK warn of Russia-linked threat actors’ attacks

Cybersecurity agencies of the Five Eyes intelligence alliance warn of cyberattacks conducted by Russia-linked threat actors on critical infrastructure. Cybersecurity agencies of the Five Eyes intelligence alliance (United States, Australia, Canada, New Zealand, and the United Kingdom) issued a joint advisory warning of cyber attacks on critical
Publish At:2022-04-21 06:26 | Read:429 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Security critical infras

How Does Cybersecurity Impact Environmental Services and Infrastructure?

span class="entry-content post-content">Environmental sustainability has become a significant concern for businesses today. Yet, many are not seeing the connection between sustainability efforts and cybersecurity.  Despite how different they may seem, these two topics are intertwined. If environmental services and infrastructure don’t embrace better sec
Publish At:2022-04-05 02:08 | Read:1194 | Comments:0 | Tags:Featured Articles Security Hardening Critical Infrastructure

FBI warns of growing risks of Russia-linked attacks on US energy firms

The FBI is warning of risks related to cyber attacks aimed at energy companies of Russia-linked threat actors. The FBI is warning energy companies of the risks of cyber attacks carried out by Russia-linked threat actors, reported The Associated Press. The Associated Press has access to a security advisory issued by the FBI that reports that Russia-link
Publish At:2022-03-23 13:05 | Read:539 | Comments:0 | Tags:Breaking News Security Biden critical infrastructure energy

Russia-Ukraine cyber conflict poses critical infrastructure at risk

While the Russia-Ukraine cyber conflict goes on, nation-state actors, crooks, and hacktivists continue to pose critical infrastructure at risk. Critical infrastructure is a privileged target for almost any kind of threat actor, the ongoing Russia-Ukraine cyber conflict is posing them at risk. Ongoing attacks could cause severe damages to multiple secto
Publish At:2022-03-14 06:25 | Read:1672 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Hacktivism Anonymous cri

Open database leaves major Chinese ports exposed to shipping chaos

The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could disrupt the supply chain of up to 70,000 tonnes of cargo a day, with potentially serious consequences for international shipping. The cybernews® research team identified an open ElasticSearch database, which contained more than 243GB of da
Publish At:2022-03-11 10:21 | Read:1234 | Comments:0 | Tags:Breaking News Data Breach critical infrastructure data leak

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors. The US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations across 10 critic
Publish At:2022-03-08 13:05 | Read:1621 | Comments:0 | Tags:Breaking News Cyber Crime Malware critical infrastructure Cy

ICS Security: What It Is and Why It’s a Challenge for Organizations

Industrial control systems (ICS) are specific kinds of assets and associated instrumentation that help to oversee industrial processes. According to the National Institute of Standards and Technology, there are three common types of ICS. These are supervisory control and data acquisition (SCADA) systems, which help organizations to control dispersed assets;
Publish At:2022-01-26 09:58 | Read:2076 | Comments:0 | Tags:Featured Articles ICS Security Critical Infrastructure ics I

Designing a 100-Day Sprint for OT Cybersecurity: What to Consider

As we begin a new year, many organizations will enter a “goal-setting and strategic planning” season. During this time, individuals are re-energized and motivated to record new accomplishments for their professional development. Traditional corporate goal setting aligns with fiscal calendars and forces companies and individuals to build goals in chunks of 36
Publish At:2022-01-19 02:06 | Read:858 | Comments:0 | Tags:ICS Security Critical Infrastructure framework operational t

The State of Security in the UK: Lessons from the NCSC Report

The National Cyber Security Centre (NCSC) recently released its fifth annual review of the state of cybersecurity in the United Kingdom. The report is presented under five headings including an analysis of and response “The Threat,” advice for resilience, advances in threat detection and prevention technology, improving the cybersecurity eco
Publish At:2021-12-18 02:05 | Read:1987 | Comments:0 | Tags:Cyber Security Critical Infrastructure NCSC Report United Ki

A New Cybersecurity Executive Order Puts the Heat on Critical Infrastructure Suppliers

Ransomware. Five years ago, the cybersecurity community knew that term well, although among others it was far from dinner table conversation. Times have changed. Since early 2020, ransomware has hit a slew of headlines. People inside and outside of the security industry are talking about it, and many have experienced the ransomware pain firsthand. The IBM S
Publish At:2021-11-09 10:07 | Read:1412 | Comments:0 | Tags:Software Vulnerabilities Application Security CISO Energy &

A drone was modified to disrupt U.S. Power Grid, says intelligence bulletin

US officials believe that a drone was employed in an attempted attack on a power substation in Pennsylvania last year.  US officials believe threat actors used a drone in an attempted attack on a power substation in Pennsylvania last year. The attackers used a DJI Mavic 2 quadcopter-type drone, with a thick copper wire attached underneath it via nylon
Publish At:2021-11-05 22:30 | Read:1830 | Comments:0 | Tags:Breaking News Security critical infrastructure Drone hacking

US Government warns of BlackMatter ransomware attacks against critical infrastructure

The US Government has issued an alert to organisations about the threat posed by the BlackMatter ransomware group.The government’s Cybersecurity & Infrastructure Security Agency (better known as CISA) issued the advisory earlier this week, following a series of BlackMatter ransomware attacks since July 2021 targeting US critical infrastructure, inc
Publish At:2021-10-21 15:18 | Read:1234 | Comments:0 | Tags:IT Security and Data Protection BlackMatter CISA Critical In

Critical National Infrastructure (CNI) Attacks on the Rise: Are We Ready?

When we think about cyberattacks and malicious hackers, we often think in terms of our own personal lives and our own organizations. In my experience in cybersecurity, I often hear people say “Why would hackers target me? We are too small” or “I’ve never been affected by a cyberattack, so it’s not really something I’m interested in.”The reality is that cyber
Publish At:2021-10-20 23:10 | Read:2554 | Comments:0 | Tags:ICS Security Critical Infrastructure ICS security ransomware

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3