Breaking News

Boeing Releases 2022 Sustainability Report, Maps Sustainable Aerospace Progress Models predict that planned phosphorus reductions will make Lake Erie more toxic | Beta site for NSF Lam Research Outlines Path, Progress to Net Zero Emissions Remarks by U.S. Secretary of Commerce Gina Raimondo at the Bureau of Industry and Security (BIS) Update Conference FACT SHEET – U.S. Defense Contributions to Europe > U.S. Department of Defense > Release NVIDIA Studio Driver Elevates Creative Workflows in Blender 3.2, BorisFX Sapphire and Topaz Denoise AI Air Force hosts service chiefs to discuss JADC2 > Air Force > Article Display Delta Air Lines, Inc. – Delta Air Lines Announces Webcast of June Quarter Financial Results

CISA is aware that Forescout researchers have released OT:ICEFALL, a report on 56 vulnerabilities caused by insecure-by-design practices in operational technology across multiple vendors. The vulnerabilities are divided into four main categories: insecure engineering protocols, weak cryptography or broken authentication schemes, insecure firmware updates and remote code execution via native functionality.

CISA has released five corresponding Industrial Controls Systems Advisories (ICSAs) currently to provide notice of the reported vulnerabilities and identify baseline mitigations for reducing risks to these and other cybersecurity attacks.  

CISA encourages users and administrators to review the OT:ICEFALL report as well as the following ICSAs for technical details and mitigations.

Source link