HackDig : Dig high-quality web security articles

VNC instances exposed to Internet pose critical infrastructures at risk

Researchers from threat intelligence firm Cyble reported a surge in attacks targeting virtual network computing (VNC). Virtual Network Computing (VNC) is a graphical desktop-sharing system that leverages the Remote Frame Buffer (RFB) protocol to control another machine remotely. It transmits the keyboard and mouse input from one computer to another, relay
Publish At:2022-08-15 14:11 | Read:191 | Comments:0 | Tags:Breaking News Hacking ICS-SCADA Security critical infrastruc

Radioactivity monitoring and warning system hacked, disabled by attackers

The Spanish police arrested two people under the accusation of tampering with the Red de Alerta a la Radiactividad (RAR). The RAR is part of the Spanish national security systems and in use to monitor gamma radiation levels across the country. The network is managed, operated and maintained by the General Directorate of Civil Protection and Emergencies (DGPC
Publish At:2022-07-28 16:02 | Read:322 | Comments:0 | Tags:Reports critical infrastructure dgpce rar spain hack

Defending Aircraft Networks Against Cybersecurity Breaches

The aviation industry is both vast and complex. More than 45,000 flights and 2.9 million passengers travel through U.S. airspace every day, requiring high-tech tools and extensive communications networks. All of that data and complexity makes the sector a prime target for cybercriminals. Worryingly, only 49% of non-governmental organizations have fully adopt
Publish At:2022-07-11 01:06 | Read:413 | Comments:0 | Tags:Featured Articles ICS Security aircraft Aviation Critical In

Navigating Cybersecurity with NERC CIP as the North Star

Working in the Electric Utility sector of critical infrastructure gives a person a very unique perspective on how many of the pieces of the puzzle fit together to provide uninterrupted services to a broad population. My personal experience as a software engineer in the electrical industry introduced me to the nuances that the average person doesn’t consider
Publish At:2022-06-10 02:13 | Read:673 | Comments:0 | Tags:Featured Articles ICS Security NERC CIP Critical Infrastruct

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of May 2, 2022

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of May 2, 2022. I’ve also included some comments on these stories.Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other C
Publish At:2022-05-09 10:00 | Read:1022 | Comments:0 | Tags:Featured Articles VERT News Azure Bug Critical Infrastructur

US, Australia, Canada, New Zealand, and the UK warn of Russia-linked threat actors’ attacks

Cybersecurity agencies of the Five Eyes intelligence alliance warn of cyberattacks conducted by Russia-linked threat actors on critical infrastructure. Cybersecurity agencies of the Five Eyes intelligence alliance (United States, Australia, Canada, New Zealand, and the United Kingdom) issued a joint advisory warning of cyber attacks on critical
Publish At:2022-04-21 06:26 | Read:705 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Security critical infras

How Does Cybersecurity Impact Environmental Services and Infrastructure?

span class="entry-content post-content">Environmental sustainability has become a significant concern for businesses today. Yet, many are not seeing the connection between sustainability efforts and cybersecurity.  Despite how different they may seem, these two topics are intertwined. If environmental services and infrastructure don’t embrace better sec
Publish At:2022-04-05 02:08 | Read:2269 | Comments:0 | Tags:Featured Articles Security Hardening Critical Infrastructure

FBI warns of growing risks of Russia-linked attacks on US energy firms

The FBI is warning of risks related to cyber attacks aimed at energy companies of Russia-linked threat actors. The FBI is warning energy companies of the risks of cyber attacks carried out by Russia-linked threat actors, reported The Associated Press. The Associated Press has access to a security advisory issued by the FBI that reports that Russia-link
Publish At:2022-03-23 13:05 | Read:767 | Comments:0 | Tags:Breaking News Security Biden critical infrastructure energy

Russia-Ukraine cyber conflict poses critical infrastructure at risk

While the Russia-Ukraine cyber conflict goes on, nation-state actors, crooks, and hacktivists continue to pose critical infrastructure at risk. Critical infrastructure is a privileged target for almost any kind of threat actor, the ongoing Russia-Ukraine cyber conflict is posing them at risk. Ongoing attacks could cause severe damages to multiple secto
Publish At:2022-03-14 06:25 | Read:1935 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Hacktivism Anonymous cri

Open database leaves major Chinese ports exposed to shipping chaos

The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could disrupt the supply chain of up to 70,000 tonnes of cargo a day, with potentially serious consequences for international shipping. The cybernews® research team identified an open ElasticSearch database, which contained more than 243GB of da
Publish At:2022-03-11 10:21 | Read:1634 | Comments:0 | Tags:Breaking News Data Breach critical infrastructure data leak

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors. The US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations across 10 critic
Publish At:2022-03-08 13:05 | Read:1781 | Comments:0 | Tags:Breaking News Cyber Crime Malware critical infrastructure Cy

ICS Security: What It Is and Why It’s a Challenge for Organizations

Industrial control systems (ICS) are specific kinds of assets and associated instrumentation that help to oversee industrial processes. According to the National Institute of Standards and Technology, there are three common types of ICS. These are supervisory control and data acquisition (SCADA) systems, which help organizations to control dispersed assets;
Publish At:2022-01-26 09:58 | Read:2850 | Comments:0 | Tags:Featured Articles ICS Security Critical Infrastructure ics I

Designing a 100-Day Sprint for OT Cybersecurity: What to Consider

As we begin a new year, many organizations will enter a “goal-setting and strategic planning” season. During this time, individuals are re-energized and motivated to record new accomplishments for their professional development. Traditional corporate goal setting aligns with fiscal calendars and forces companies and individuals to build goals in chunks of 36
Publish At:2022-01-19 02:06 | Read:1034 | Comments:0 | Tags:ICS Security Critical Infrastructure framework operational t

The State of Security in the UK: Lessons from the NCSC Report

The National Cyber Security Centre (NCSC) recently released its fifth annual review of the state of cybersecurity in the United Kingdom. The report is presented under five headings including an analysis of and response “The Threat,” advice for resilience, advances in threat detection and prevention technology, improving the cybersecurity eco
Publish At:2021-12-18 02:05 | Read:2475 | Comments:0 | Tags:Cyber Security Critical Infrastructure NCSC Report United Ki

A New Cybersecurity Executive Order Puts the Heat on Critical Infrastructure Suppliers

Ransomware. Five years ago, the cybersecurity community knew that term well, although among others it was far from dinner table conversation. Times have changed. Since early 2020, ransomware has hit a slew of headlines. People inside and outside of the security industry are talking about it, and many have experienced the ransomware pain firsthand. The IBM S
Publish At:2021-11-09 10:07 | Read:1773 | Comments:0 | Tags:Software Vulnerabilities Application Security CISO Energy &

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud