14 Dec 2018

Operation Sharpshooter Takes Aim at Global Critical Assets

“Operation Sharpshooter uses a new implant to target mainly English-speaking nuclear, defense, energy and financial companies. Researchers have detected a widespread reconnaissance campaign using a never-before-seen implant framework to infiltrate global defense and critical infrastructure players — including nuclear, defense, energy and financial companies. The campaign, dubbed Operation Sharpshooter, began

Read More
13 Dec 2018

Russian Critical Infrastructure Targeted by Profit-Driven Cybercriminals

“Several critical infrastructure organizations in Russia have been targeted by hackers believed to be financially-motivated cybercriminals rather than state-sponsored cyberspies. An analysis of malicious Word documents led researchers at endpoint security firm Cylance to discover fake websites set up to impersonate the legitimate sites of Russian oil giant Rosneft and

Read More
06 Dec 2018

FBI: Watch out for Iranian SamSam malware

DHS and the FBI shared a joint alert on December third regarding the critical infrastructure threat posed by the Iranian SamSam virus. The ultimate purpose of the virus is the successful intrusion and takeover of a network for the purpose of extorting a ransom (ransomware). The alert recommended strong passwords,

Read More
29 Nov 2018

Russian Hackers Haven’t Stopped Probing the US Power Grid

“At the CyberwarCon forum in Washington, DC on Wednesday, researchers from threat intelligence firm FireEye noted that while the US grid is relatively well-defended, and difficult to hit with a full-scale cyberattack, Russian actors have nonetheless continue to benefit from their ongoing vetting campaign. ‘There’s still a concentrated Russian cyber

Read More
14 Nov 2018

Pentagon Researchers Test ‘Worst-Case Scenario’ Attack on U.S. Power Grid

The Defense Advanced Research Projects Agency 7-day exercise that took place earlier this month saw over 100 cyber specialists gathering on Plumb Island, a federal research facility off of New York’s Long Island, to respond to a fictional cyber attack against the power grid. DARPA researchers were able to segregate

Read More
19 Oct 2018

3 Years After Attacks on Ukraine Power Grid, BlackEnergy Successor Poses Growing Threat

Researchers are calling “GreyEnergy,” an offshoot of the BlackEnergy group that conducted a massive cyberattack on the Ukrainian power grid in 2015, an emerging threat to the Central and Eastern European power grid. Security firm ESET has released a report describing the group’s activities as focused on reconnaissance and espionage

Read More
08 Oct 2018

Why the Department of Energy is worried about wind turbine hacking

Following Russian penetration of the U.S. power grid at a number of locations and levels, the U.S. is ramping up its cybersecurity technology for companies delivering energy around the country. As part of these efforts, the Department of Energy recently announced $28 million in research and development programs for power

Read More
25 Jul 2016

DHS Critical Infrastructure 2025 Strategic Risk Assessment

This strategic risk assessment provides an overview of six distinguishable trends emerging in U.S. critical infrastructure. These trends, when combined or examined singularly, are likely to significantly influence critical infrastructure and its resiliency during the next 10 years. The U.S. Department of Homeland Security/Office of Cyber and Infrastructure Analysis identified

Read More