Browsing Category: Critical Infrastructure

shutterstock_77245495

Cybersecurity Legislation Forecast is Grim

A D.C. insider is pessimistic that we’ll see cybersecurity legislation before 2016, pointing toward a number on contributing political and national security factors.

Read more...

911 outage

April 911 Outage Affected 3.5 Percent of U.S. Population

A catastrophic failure in the emergency call management infrastructure cascaded into an incident that left 11 million out of reach of 911 dispatchers for six hours.

Read more...

us capitol

D.C.’s Complicated View of Cyberwar, Regulation, Liability

Former NSA general counsel Stewart Baker shared his insight on Washington’s perceptions of cyberwar during his keynote address at the Cybersecurity Summit in Minneapolis.

Read more...

sand worm

Sandworm APT Team Found Using Windows Zero Day Vulnerability

A cyberespionage team, possibly based in Russia, has been using a Windows zero day vulnerability to target a variety of organizations in several countries, including the United States, Poland, Ukraine and western Europe.

Read more...

SIMATIC_PCS_7

Siemens Patches Five Vulnerabilities in SIMATIC WinCC for PCS 7

Siemens has patched five vulnerabilities in its SIMATIC PCS 7 system that could result in privilege escalation and give an attacker unauthenticated access to sensitive data.

Read more...

critical infrastructure security

Schneider Electric Fixes Remotely Exploitable Flaw in 22 Different Products

There’s a remotely exploitable directory traversal vulnerability in more than 20 individual products from Schneider Electric that can enable an attacker to gain control of an affected machine.

Read more...

bash_ics

Patching Bash Vulnerability a Challenge for ICS, SCADA

Experts are concerned that many Linux-based industrial control systems and embedded systems could be too steep a patching challenge and remain in the crosshairs of the Bash vulnerability.

Read more...

Nick Sullivan

Small Signs of Progress on DNSSEC

The Internet hasn’t been quick to adopt DNSSEC, for a variety of reasons, but experts say that there are some reasons to be optimistic about the progress that’s being made on DNSSEC adoption.

Read more...

scada

Series of Vulnerabilities Found in Schneider Electric SCADA Products

UPDATE–There are several unpatched, remotely exploitable vulnerabilities in a number of Schneider Electric’s SCADA products, one of which could be used to perform a shutdown of the SCADA server. Another of the vulnerabilities is an authentication bypass that could give an attacker access to sensitive data. The vulnerabilities affect a variety of Schneider Electric StruxureWare[...]

Read more...