What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-08-10 14:00:00 | Navigation des mers de cybersécurité: réglementations environnementales, les nouveaux défis de l'industrie maritime et de l'industrie maritime Navigating Cybersecurity\\'s Seas: Environmental Regulations, OT & the Maritime Industry\\'s New Challenges (lien direct) |
Des mesures d'efficacité strictes dans les nouvelles réglementations environnementales créent une conséquence involontaire pour l'industrie du transport maritime: augmentation des risques de cybersécurité dans les systèmes de technologie opérationnelle.
Stringent efficiency measures in new environmental regulations create an unintended consequence for the shipping industry: increased cybersecurity risks in operational technology systems. |
Industrial | ★★★ | |
|
2023-08-08 19:27:00 | Radeau de vulnérabilités Tetra Zero-Day met en danger les communications industrielles Raft of TETRA Zero-Day Vulnerabilities Endanger Industrial Communications (lien direct) |
D'autres vulnérabilités liées à la Tetra ont été divulguées dans les stations de base qui dirigent et décryptent le protocole de communication mondial pour les systèmes industriels.
Further TETRA-related vulnerabilities have been disclosed in base stations that run and decrypt the worldwide communications protocol for industrial systems. |
Vulnerability Industrial | ★★ | |
|
2023-08-03 15:49:00 | Russie \\ 'S \\' Midnight Blizzard \\ 'Hackers Lance Flurry of Microsoft Teams Attacks Russia\\'s \\'Midnight Blizzard\\' Hackers Launch Flurry of Microsoft Teams Attacks (lien direct) |
Le Nobelium APT lance des attaques de phishing basées sur des équipes très ciblées contre des cibles gouvernementales et industrielles en utilisant des locataires Microsoft 365 compromis, dans le but du vol de données et du cyber-espionnage.
The Nobelium APT is launching highly targeted Teams-based phishing attacks on government and industrial targets using compromised Microsoft 365 tenants, with the aim of data theft and cyber espionage. |
Industrial | ★★★ | |
|
2023-08-03 14:08:31 | Des tas d'IoT non corrigées, les appareils OT attirent les cyberattaques ICS Piles of Unpatched IoT, OT Devices Attract ICS Cyberattacks (lien direct) |
Les appareils industriels sont moins susceptibles d'être corrigés en raison des temps d'arrêt coûteux, et les acteurs de la menace en ont pris note.
Industrial devices are less likely to be patched due to expensive downtime, and threat actors have taken notice. |
Threat Threat Industrial | ★★★★ | |
|
2023-07-31 19:33:00 | Systèmes ICS à ponction aérienne ciblés par des logiciels malveillants sophistiqués Air-Gapped ICS Systems Targeted by Sophisticated Malware (lien direct) |
Les chercheurs ont découvert de nouveaux outils de deuxième étape de vermidage utilisés pour exfiltrer localement les données des environnements ICS à puits d'air, mettant les acteurs de la menace à un pas de la transmission des informations à un C2.
Researchers uncovered new worming second-stage tools used to locally exfiltrate data from air gapped ICS environments, putting threat actors one step away from transmission of the info to a C2. |
Malware Tool Threat Industrial | ★★ | |
|
2023-07-27 19:55:33 | TSA met à jour les exigences de cybersécurité du pipeline TSA Updates Pipeline Cybersecurity Requirements (lien direct) |
Les mises à jour obligeront les propriétaires de pipelines et les opérateurs à faire plus que simplement planifier des cyberattaques potentielles;Maintenant, ces plans devront être testés.
The updates will require pipeline owners and operators to do more than just plan for potential cyberattacks; now, those plans will need to be tested. |
Industrial | ★★ | |
|
2023-07-26 16:19:00 | Les bogues de peloton exposent les réseaux d'entreprise aux attaques IoT Peloton Bugs Expose Enterprise Networks to IoT Attacks (lien direct) |
Les pirates ont trois voies clés - le système d'exploitation, les applications et les logiciels malveillants - pour tirer parti de l'équipement de fitness populaire comme accès initial pour le compromis de données, le ransomware et plus
Hackers have three key pathways - the OS, apps, and malware - for leveraging the popular home fitness equipment as initial access for data compromise, ransomware, and more |
Malware Industrial | ★★★★ | |
|
2023-07-13 18:15:00 | Bug RCE critique dans Rockwell Automation plcs zaps sites industriels Critical RCE Bug in Rockwell Automation PLCs Zaps Industrial Sites (lien direct) |
Rockwell Automation et CISA mettent en garde contre les vulnérabilités de sécurité qui affectent les centrales électriques, les usines et autres sites d'infrastructures critiques.
Rockwell Automation and CISA warn of security vulnerabilities that affect power plants, factories, and other critical infrastructure sites. |
Vulnerability Industrial | ★★★★ | |
|
2023-07-06 01:00:00 | 3 Les bogues RCE critiques menacent les panneaux solaires industriels, les systèmes de grille en danger 3 Critical RCE Bugs Threaten Industrial Solar Panels, Endangering Grid Systems (lien direct) |
Les systèmes de surveillance d'énergie solaire exposés et non corrigés ont été exploités à la fois par des amateurs et des professionnels, y compris des pirates de botnet Mirai.
Exposed and unpatched solar power monitoring systems have been exploited by both amateurs and professionals, including Mirai botnet hackers. |
Industrial | ★★★★ | |
|
2023-06-07 21:47:00 | (Déjà vu) Ciara 4.0 de Radiflow \\ fournit des informations exploitables pour simplifier la gestion de l'OT Cyber-risque dans les installations industrielles Radiflow\\'s CIARA 4.0 Delivers Actionable Insights to Simplify the Management of OT Cyber-Risk at Industrial Facilities (lien direct) |
CIARA V4.0 stimule le respect des réglementations de sécurité et des meilleures pratiques tout en fournissant des directives efficaces d'atténuation."Les CISO font plus avec moins, ce qui rend difficile de comprendre leur position actuelle à travers le paysage de la cybersécurité OT", a déclaré Ilan Barda, PDG et co-fondateur de Radiflow.
CIARA V4.0 boosts compliance with security regulations and best practices while providing effective mitigation guidance. "CISOs are doing more with less, making it challenging to understand their current standing across the OT Cybersecurity landscape," said Ilan Barda, Radiflow CEO and co-founder. |
Industrial | ★★ | |
|
2023-05-25 21:30:09 | Les logiciels malveillants Cosmicenergy émergent, capable de faire un arrêt de la grille électrique CosmicEnergy Malware Emerges, Capable of Electric Grid Shutdown (lien direct) |
Le code russe qui pourrait altérer les machines industrielles et basculer les RTU sur et désactiver se déroulaient autour de Virustotal pendant des années avant d'être remarqués.Il soulève de nouvelles questions sur l'état de la sécurité des OT.
Russian code that could tamper with industrial machines and toggle RTUs on and off was floating around VirusTotal for years before being noticed. It raises new questions about the state of OT security. |
Malware Industrial | CosmicEnergy | ★★★ |
|
2023-05-16 14:32:00 | Les bogues RCE sévères ouvrent des milliers de dispositifs IoT industriels à Cyberattack Severe RCE Bugs Open Thousands of Industrial IoT Devices to Cyberattack (lien direct) |
Les chercheurs ont trouvé 11 vulnérabilités dans les produits de trois fournisseurs de routeurs cellulaires industriels que les attaquants peuvent exploiter à travers divers vecteurs, contournant toutes les couches de sécurité.
Researchers found 11 vulnerabilities in products from three industrial cellular router vendors that attackers can exploit through various vectors, bypassing all security layers. |
Industrial | ★★ | |
|
2023-04-28 19:00:00 | Txone: la sécurité industrielle évolue pour maintenir l'opération en cours d'exécution TXOne: Industrial Security Is Evolving to Keep the Operation Running (lien direct) |
Terence Liu et Jeff DePasse de Txone Networks rejoignent Dark Reading \'s Terry Sweeney at Dark Reading News Desk lors de la conférence RSA pour discuter de la technologie opérationnelle, des infrastructures critiques et de la stratégie nationale de cybersécurité.
Terence Liu and Jeff DePasse of TXOne Networks joins Dark Reading\'s Terry Sweeney at Dark Reading News Desk during RSA Conference to discuss operational technology, critical infrastructure, and the National Cybersecurity Strategy. |
Industrial Conference | ★★ | |
|
2023-04-12 16:00:00 | Crowdsstrike étend Falcon pour inclure l'IoT CrowdStrike Expands Falcon to Include IoT (lien direct) |
Crowdsstrike Falcon Insight pour l'IoT couvre l'Internet des objets, l'IoT industriel, la technologie des opérations, ainsi que les dispositifs médicaux.
CrowdStrike Falcon Insight for IoT covers Internet of Things, Industrial IoT, Operations Technology, as well as medical devices. |
Industrial Medical | ★★ | |
|
2023-04-04 22:25:00 | Industrial Defender lance Phoenix: Solution de visibilité et de sécurité OT pour les opérations de petite et moyenne Industrial Defender Launches Phoenix: OT Visibility & Security Solution for Small to Midsized Operations (lien direct) |
Phoenix répond au besoin critique de petits opérateurs afin de sécuriser leurs opérations avec une solution de sécurité OT facile à utiliser et rentable.
Phoenix addresses the critical need for smaller operators to secure their operations with an easy-to-use and cost-effective OT security solution. |
Industrial | ★★ | |
|
2023-03-22 21:55:00 | La CISA met en garde contre les vulnérabilités ICS non corrigées qui se cachent dans l'infrastructure critique [CISA Warns on Unpatched ICS Vulnerabilities Lurking in Critical Infrastructure] (lien direct) | L'avis survient la même semaine qu'un avertissement de l'Eisa de l'UE \\ sur le potentiel d'attaques de ransomwares contre les systèmes OT dans le secteur des transports.
The advisory comes the same week as a warning from the EU\'s ENISA about potential for ransomware attacks on OT systems in the transportation sector. |
Ransomware Industrial | ★★★ | |
|
2023-03-15 01:00:00 | Google Proposes Reducing TLS Cert Lifespan to 90 Days (lien direct) | Organizations will likely have until the end of 2024 to gain visibility and control over their keys and certificates. | Industrial | ★★★ | |
|
2023-03-14 21:48:00 | Camozzi Group and Radiflow Announce Collaboration on Industrial Systems Cybersecurity (lien direct) | Organizations will likely have until the end of 2024 to gain visibility and control over their keys and certificates. | Industrial | ★★★ | |
|
2023-03-09 15:00:00 | 5 Critical Components of Effective ICS/OT Security (lien direct) | These agile controls and processes can help critical infrastructure organizations build an ICS security program tailored to their own risk profile. | Industrial | ★★★ | |
|
2023-03-07 15:00:00 | Ransomware\'s Favorite Target: Critical Infrastructure and Its Industrial Control Systems (lien direct) | The health, manufacturing, and energy sectors are the most vulnerable to ransomware. | Industrial | ★★★ | |
|
2023-02-23 17:33:00 | (ISC)² Opens Security Congress 2023 Call for Presentations (lien direct) | (ISC)2 members and cybersecurity professionals worldwide are encouraged to share their expertise, best practices and experiences with their peers and career hopefuls. | Industrial | ★★★ | |
|
2023-02-22 22:10:00 | UL Solutions Advances Automotive Safety and Security (lien direct) | A combined team of UL Solutions safety science experts will address automotive cybersecurity, functional safety, automated driving and software development processes to help customers bring safer, more secure innovations to market. | Industrial | ★★ | |
|
2023-02-14 22:47:00 | OT Network Security Myths Busted in a Pair of Hacks (lien direct) | How newly exposed security weaknesses in industrial wireless, cloud-based interfaces, and nested PLCs serve as a wake-up call for hardening the physical process control layer of the OT network. | Industrial | ★★ | |
|
2023-02-14 15:10:00 | SynSaber Launches a Free OT PCAP Analyzer Tool for the Industrial Security Community (lien direct) | How newly exposed security weaknesses in industrial wireless, cloud-based interfaces, and nested PLCs serve as a wake-up call for hardening the physical process control layer of the OT network. | Tool Industrial | ★★★ | |
|
2023-02-08 18:45:00 | GAO Calls for Action to Protect Cybersecurity of Critical Energy, Communications Networks (lien direct) | Enhanced industrial control systems cybersecurity for energy and communications sector among top recommendations in new GAO cybersecurity assessment. | Industrial | ★★ | |
|
2023-02-07 18:10:00 | Industrial Cybersecurity Innovator Opscura Receives $9.4M in Series A Funding as Critical Operations Transform (lien direct) | Enhanced industrial control systems cybersecurity for energy and communications sector among top recommendations in new GAO cybersecurity assessment. | Industrial | ★★ | |
|
2023-02-01 16:00:00 | Command-Injection Bug in Cisco Industrial Gear Opens Devices to Complete Takeover (lien direct) | Two security holes - one particularly gnarly - could allow hackers the freedom to do as they wish with the popular edge equipment. | Industrial | ★★ | |
|
2023-01-31 16:15:00 | NanoLock Addresses Global Industrial & OT Cyber Demand with Expansions into Europe and North America (lien direct) | To meet a pressing demand for industrial and OT security, zero-trust, device-level cybersecurity provider expands with strategic hires in new and established markets. | Industrial | ★★ | |
|
2023-01-18 17:10:00 | ICS Confronted by Attackers Armed With New Motives, Tactics, and Malware (lien direct) | Threat actors are diversifying across all aspects to attack critical infrastructure, muddying the threat landscape, and forcing industrial organizations to rethink their security. | Malware Threat Industrial | ★★ |
To see everything:
Our RSS (filtrered)
