Category: CyberSecurity

White House Memo on Critical Infrastructure and Threat of Ransomware

The Cybersecurity & Infrastructure Security Agency has distributed a memo from Anne Neuberger, Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technology, titled “What We Urge You To Do To Protect Against The Threat of Ransomware.” We urge you to take the necessary precautions to prevent a potential cybersecurity […]

MCGA & NRWA Joint Position Statement on Cybersecurity Readiness

On Monday, February 8, 2021, Sheriff Bob Gualtieri held a press conference surrounding the unlawful intrusion to the City of Oldsmar’s water treatment system. During the press conference, Sherriff Gualtieri laid out the sequence of events: On Friday 5th February at approximately 8am an operator at a water treatment plant noticed someone accessing the control system Human Machine Interface (HMI) […]

Microsoft Exchange Vulnerability

INTENDED FOR WIDEST DISTRIBUTION Critical Infrastructure Colleagues and Partners, The Cybersecurity and Infrastructure Security Agency (CISA) strongly urges its partners to follow guidance provided to Federal Civilian Executive Branch Departments and Agencies at cisa.gov/ed2102. This CISA Emergency Directive outlines key steps federal officials must take to immediately address this vulnerability. We cannot stress enough the seriousness of this vulnerability; it is widespread and is indiscriminate.   As a […]

Compromise of U.S. Water Treatment Facility

On February 5, 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition (SCADA) system at a U.S. drinking water treatment plant. The unidentified actors used the SCADA system’s software to increase the amount of sodium hydroxide, also known as lye, a caustic chemical, as part of the water treatment process. […]